HashiCorp Vault 2.0 is now on IBM’s lifecycle model, and the big change is identity-first plumbing: workload identity federation, SCIM 2.0 provisioning, faster.
“SCIM 2.0 provisioning” is the part that makes me perk up, because in theory it means your Vault entities/groups can stop being this weird snowflake you hand-maintain when people join/leave teams.
I haven’t wired SCIM into Vault personally (we mostly just suffer through Okta group mapping elsewhere), but if this actually keeps access in sync when folks move teams/leave, that’s a huge quality-of-life win.
Bookmarked
Bookmarked
