I’m not sure if @Jay will be including the topic of Secrets Management in his Enterprise Security series, but, this is an area I think would be beneficial to many.
At my last employer we used Thycotic for general Key, Token and Password management. We didn’t use it for automated-credentials on server instances or anything, mainly just user access type things.
Over the last week alone I’ve created a dozen or more Keys, Tokens, and passwords for just the small number of things I’ve been working on. As the number of servers / services in my Hybrid Homelab / Cloud endeavors increases, so does the need for some kind of reasonable secrets management strategy. I’ve been looking at (for some time now) HashiCorp Vault but it’s not a simple solution to implement.
Maybe just an open discussion with folks describing their version of best practices would get us going, I don’t know, just looking for a solid start somewhere.