Skip to main content
Version: Next

Secret Management

When operating in production environments, securely handling credentials, API keys, and access tokens is critical. Lunar MCPX Enterprise provides a flexible approach to secret management, allowing you to control how sensitive data is stored, used, and rotated within your own infrastructure.

secret_management

Because MCPX Enterprise is fully self-hosted, all secret management happens inside your environment. No credentials are ever transmitted outside your deployment.

How Secret Management Works​

MCPX Enterprise is designed to integrate with your existing secret storage and rotation processes. You can reference and load secrets directly from your own infrastructure rather than embedding them into configuration files or environment variables.

Key Principles​

  • Self-Hosted Control – All secrets remain within your infrastructure. MCPX Enterprise never sends, syncs, or mirrors secret data externally.
  • Separation of Duties – Authentication credentials, API keys, and service tokens are stored and managed separately from application logic.
  • Pluggable Integrations – You can configure MCPX Enterprise to fetch secrets from your organization’s preferred provider (for example, HashiCorp Vault, AWS Secrets Manager, or GCP Secret Manager).
  • Scoped Access – Each secret can be scoped to a specific agent, tool, or service, ensuring that credentials are only available where needed.
  • Use a Central Secret Store – Reference secrets via environment variables or APIs that connect to your organization’s trusted secret manager.
  • Rotate Regularly – Schedule key and token rotation to reduce risk exposure.
  • Avoid Storing Secrets in Configuration Files – Keep configurations declarative and reference secure sources instead.
  • Restrict Access by Role – Use the Centralized User Management feature to control which users or agents can access credentials for specific tools or servers.

Benefits​

  • Keeps all credentials inside your controlled infrastructure
  • Supports integration with existing enterprise secret management tools
  • Enables scoped, auditable access to sensitive data
  • Reduces the risk of credential leaks or configuration drift