Vault at scale: BlackRock's journey

BlackRock has 200 separate client environments in their SaaS platform, encompassing both host-based and cloud-native workloads. They chose Vault Enterprise and Terraform to build out the infrastructure for application identity and secrets management. This presentation details their 2.5-year journey migrating workloads to their Vault solution, covering challenges faced, solutions employed, and lessons learned in building Vault at scale. Key topics include scaling Terraform, understanding Vault limits and maximums, certificate management issues, ephemeral credentials, and strategies for handling shared secrets.