Skip to main content
Sign in

Adding credentials to Oomnitza

  • March 03, 2025 07:09
  • Updated

Credentials are stored centrally and secretly and are encrypted in the Oomnitza vault. 

The advantages of using the vault are:

  • It is easier to set up new custom integrations and API workflows.
  • It is easier to authenticate and execute APIs that are owned by different groups in an organization.
  • It prevents secret sprawl. 

The Oomnitza vault is integrated as a separate service in each Oomnitza instance. The implementation is based on Hashicorp Vault, which is the industry standard for encrypted secret storage. Secrets are stored in the database as encrypted strings that can only be accessed by the application server in the same subnet. 

Adding credentials to the vault

Only users whose role has has been granted read and write access can add credentials.

Vendor's application is listed

The type of authorization determines the type of information that you need to provide to authenticate with the vendor's application. 

  1. Click Configuration > Security > Credentials.
  2. Click Add new credential add_grey_circle_black_plus.svg.
  3. Select the vendor's application.
  4. Click the right arrow Ceate-Integration-Arrow.svg.
  5. Enter the name of the credentials. To easily identify the application that the credentials are associated with, specify the application name, level of access, and authorization type such as Okta Read-Only API Key.
  6. Enter the credentials.
  7. Click CREATE.

Vendor's application is not listed

  1. Click ADVANCED MODE.
  2. Enter the name of the credentials.
  3. Enter the owner of the credentials.
  4. Click AUTHORIZATION.
  5. Select the type of authorization.
  6. Enter the credentials.
  7. Click CREATE.

Note
For OAuth credentials, the expiration date is read-only and is retrieved from the connected system. For all other authentications, the expiration date must be entered manually.

When the credentials for vendor applications are added, they can be used in API blocks, SaaS User Role blocks in workflows, and in extended asset and user integrations.

Related articles

BlueLink.svg OAuth credentials for custom extended integrations

BlueLink.svg Cloudfare:Mutual TLS. Leran more about mTLS.

BlueLink.svg HashiCorp vault: Manage secrets and protect sensitive data

Related articles

Comments

0 comments

Please sign in to leave a comment.