Skip to main content

Documentation Index

Fetch the complete documentation index at: https://astronomer-preview.mintlify.app/llms.txt

Use this file to discover all available pages before exploring further.

Use an external secrets manager with Astro Private Cloud to manage Airflow variables and connections. Astro Private Cloud supports integration with the following external secrets backends:

Hashicorp Vault

Use your own Hashicorp Vault instance for storing Airflow variables and connections.

AWS Secrets Manager

Manage secrets and credentials with AWS Secrets Manager.

AWS Parameter Store

Use AWS Systems Manager Parameter Store for secret storage integration.

Google Cloud Secret Manager

Integrate Google Cloud Secret Manager with your Astro Private Cloud Deployments.

Azure Key Vault

Securely store and retrieve Airflow secrets with Azure Key Vault.

Why integrate a secrets backend?

  • Store Airflow secrets in a centralized place, keeping them outside your Airflow metadata database.
  • Meet your organization’s security and compliance requirements.
  • Enable easier rotation and management of connection and variable secrets.
For detailed setup instructions for each backend, select your provider above.
You can continue to manage Airflow variables and connections via the Airflow UI or as environment variables if desired. When a secrets backend is configured, Airflow will check the external backend for secret values before falling back to environment variables and then to the UI.