Itential Automation Gateway (IAG) 5.2 enhances security and flexibility for network automation operations by introducing secrets injection capabilities alongside important security improvements.
IAG 5.2 introduces the ability to securely inject sensitive information stored in IAG’s secret store directly into your services as environment variables during execution. This enhancement streamlines credential management while maintaining security best practices for your automation workflows.
Key capabilities include:
This feature eliminates the need to hardcode sensitive information in your automation scripts, reducing security risks and simplifying credential rotation across your automation environment.
For implementation guidance and detailed examples, see Inject secrets into services.
ENG-13805: Resolved a potential path traversal security vulnerability detected by Snyk’s code analysis.
IAG 5.2 works with Gateway Manager to connect to Itential Platform, enabling IAG services to be used as tasks within Platform workflows. Services configured with secret injection can be executed through the runService task, bringing enterprise-grade secrets management to your automation workflows.
IAG 5 supports Itential Platform versions 6 and 2023.2.
To use the secrets injection feature, you must be running IAG 5.2 or later with IAG’s secret store configured. For information on configuring the secret store, see Configure IAG secret store.