Subscribe to Help Center RSS FeedYou can use a dedicated script from VaultOne to perform automated password rotation for your Linux or Unix servers. This process involves enabling the rotation, downloading the script, generating a security key, and installing the script on your target server.
Prerequisites:
- You must have administrative access to your VaultOne instance.
- You must have superuser (sudo) access to the target Linux or Unix server.
Configuring Password Rotation in VaultOne
First, you must activate the password rotation feature for the specific credential you want to manage.
- Log in to your VaultOne platform.
- Go to the Passwords menu.
- Select the desired password to view its edit screen.
- Click the Password Rotation tab.
- Select the Use automatic password rotation for this credential checkbox.
- Click Save.
- Return to the Passwords menu and find the credential you configured.
- Click Actions, then select Password Rotation.
- In the new window, click Download Linux (Shell) Script.
- Next, in the same window, click Generate key.
This key is displayed only once. You must copy it immediately before you close the window.
- In the new window, click Download Linux (Shell) Script.
- Move the downloaded script file to the computer that will execute the rotation.
Installing the Script on the Server
Complete the process by installing and configuring the script on the target Linux/Unix server.
- On the target server, go to the directory where you moved the script file.
- If necessary, add execute permission to the script:
chmod +x VaultOnePasswordRotationInstaller.sh - Run the script with superuser privileges:
sudo ./VaultOnePasswordRotationInstaller.sh - Follow any on-screen prompts during the installation.
After the script installation is complete, password rotation occurs automatically according to the script's configured schedule.
Password rotation on your servers only works on machines that use TLS protocol versions 1.2 and 1.3.
In this Article
Learn More