This week we will learn about HCP Single Sign-On, Static Secrets with the Key/Value Secrets Engine, and Secrets Versioning.
HashiCorp Cloud Platform (HCP) allows organizations to configure SAML 2.0 SSO (Single Sign-On) as an alternative to traditional user management with GitHub and email-based options. This can help mitigate Account Take Over (ATO) attacks, provide a universal source of truth to federate identities from your identity provider (IDP), and better manage user access to your organization.
Vault can be used to store any secret in a secure manner. The secrets may be SSL certificates and keys for your organization's domain, credentials to connect to a corporate database server, etc.
Learn how to enable SSO for your organization in this HCP tutorial: