Secrets on VM Prefect server on the cloud the secrets are secure in Vault when using a VM Prefect server, or even when using the cloud, but do not want company service credentials to be stored in Prefect cloud. what are possible solution for secrets management? using ~/.prefect/config.toml might not be ideal, since the secrets are not encrypted this way

Hey @YD, other people use AWS Secrets Manager like this . If you can’t use any online service, it would be hard to suggest one. I think you can try deploying Vault or some equivalent locally?

dunno what youre setup is, but docker secrets work OK for a basic docker based deploy https://docs.docker.com/engine/swarm/secrets/

@Zach Schumacher care to share the reasons for the migration? We use 1pw here but just as a Password Manager.. Everything that is meant for code/services is handled by Hashicorp Vault.

Easier for us to manager, interface is nicer, easier to deploy

Totally valid reasons. Vault is awesome because of its capabilities, but if I (or the other SRE guy) quit tomorrow, nobody has a clue of how to handle it.