Send requestsPostman Vault

Store secrets in Postman Vault

View as Markdown

Availability of features on this page depend on your Postman plan.

Use Postman Vault to securely work with sensitive data, such as API keys and passwords, as vault secrets in your HTTP requests and collections. Store vault secrets in your Postman Local Vault, where your sensitive data is local and only accessible by you.

You can also create Postman Vault integrations to connect vault secrets in your local vault with external vaults. This allows you to reference managed secrets without storing them in Postman.

About Postman Vault

Postman Vault includes the following features:

  • Postman Local Vault - Store sensitive data as vault secrets in your local instance of Postman. Only you can access vault secrets in your Postman Local Vault, and they aren’t synced to the Postman cloud. With your local vault, your vault secrets are restricted to the Postman app and machine where you created them. Postman Local Vault is available on all Postman plans. Learn how to access your local vault.

  • Postman Vault integrations - Create integrations between Postman Vault and external vaults. Link vault secrets in your Postman Local Vault to secrets stored in external vaults, which aren’t synced to the Postman cloud. Postman supports integrations with 1Password, AWS Secrets Manager, Azure Key Vault, and HashiCorp Vault. Postman Vault integrations are available on Postman Enterprise plans with the Advanced Security Administration add-on. Learn more about Postman Vault integrations.

Create and use vault secrets

You can add sensitive data directly to your local vault, or set existing data in your requests and collections as vault secrets. You can also try out vault secrets locally in your requests before adding them.

Once you add vault secrets to Postman Vault, you can reference them in your requests and collections. You can reference vault secrets from your local vault throughout workspaces in your team.

To learn more, see Create and manage vault secrets in Postman Vault.

Export and import vault secrets

From your local vault, you can export vault secrets as a JSON file in encrypted or plaintext format to save them for later. This enables you to preserve vault secrets when you sign out of Postman, switch between the Postman desktop and web apps, or switch to a different machine. You can import vault secrets back to your local vault to continue using them in Postman.

To learn more, see Export and import vault secrets from your Postman Local Vault.

Troubleshoot vault secrets

To learn how to troubleshoot vault secrets in Postman Vault, see Troubleshoot vault secrets.