Managing the Vault
2 minute read
Introduction
In Docusnap365, the secure handling of credentials plays a key role — especially for automated discovery of IT systems. To support this, a vault is available that provides different options for storing and using credentials. This enables security, convenience, and accountability requirements to be met in a targeted way.
Credential Storage Options
Docusnap365 supports three different approaches:
Temporary Use as Needed
For one-time discovery tasks, credentials can be entered directly in the wizard. These are transmitted securely, retrieved by the gateway, and then automatically deleted — leaving no permanent traces in the system.
Reusable Storage in the Vault
For recurring use of the same credentials, they can be stored securely in the isolated vault. Credentials are encrypted and can be selected by authorized users in future jobs — without needing to re-enter the password.
Local Storage on the Gateway
In environments with strict security requirements, credentials can be stored exclusively on the Docusnap Enterprise Gateway. In this case, the actual credentials never leave the local infrastructure — only a reference (identifier) is stored in the central vault for selection purposes.
Managing the Vault via the Interface
The “Configuration → Vault” section provides a complete overview of all saved entries. For each entry, the following is shown:
- Name/label
- Type (e.g., username/password, app registration)
- Username
- Storage location
The following actions are available:
- Add new entries
- Edit existing credentials
- Delete unused entries
- Refresh the view
- Export for documentation
Best Practice Recommendations
- For regular scans: securely store credentials in the vault
- For project-based one-time scans: use temporary entry
- For isolated networks: store credentials only locally on the gateway