#navbar .max-w-8xl {
  max-width: 100%;
  border-bottom: 1px solid #ebebeb;
  background-color: #F4F3EF;
}

.max-w-8xl {
  /* background-color: #f5f5f5; */
}

#sidebar {
  left: 0;
  padding-right: 30px;
  border-right: 1px;
  border-color: #cdd64b;
  background-color: #F4F3EF;
  border-right: 1px solid #ebebeb;
}

#sidebar-content {
  padding-left: 2rem;
}

#sidebar .relative .sticky {
  opacity: 0;
}

#sidebar li > div.mt-2 {
  border-radius: 0;
  padding: 5px;
}

#sidebar li > a.text-primary {
  border-radius: 0;
  background-color: #FBFFCC;
  border-left: 4px solid #EFFF33;
  padding: 5px;
}

#sidebar li > a.mt-2 {
  border-radius: 0;
  padding: 5px;
}

#sidebar li > a.leading-6 {
  border-radius: 0;
  padding: 0px;
}

/* #sidebar ul > div.mt-12 {
  padding-top: 30px;
  position: relative;
}

#sidebar ul > div.mt-12 h5 {
  position: absolute;
  left: -12px;
  top: -0px;
} */

#header {
  border-left: 4px solid #EFFF33;
  padding-left: 16px;
  padding-right: 16px;
  background-color: #FDFFE5;
  padding-bottom: 10px;
  padding-top: 10px;
}

#content-area .mt-8 .block{
  border-radius: 0;
  border-width: 1px;
  background-color: #FCFBFA;
  border-color: #ebebeb;
}

/* #content-area:hover .mt-8 .block:hover{
  border-radius: 0;
  border-width: 1px;
  background-color: #FDFFE5;
  border-color: #EFFF33;
} */

#content-area .mt-8 .rounded-xl{
  border-radius: 0;
}

#content-area .mt-8 .rounded-lg{
  border-radius: 0;
}

#content-area .mt-6 .rounded-xl{
  border-radius: 0;
}

#content-area .mt-6 .rounded-lg{
  border-radius: 0;
}

#content-area .mt-6 .rounded-md{
  border-radius: 0;
}

#content-area .mt-8 .rounded-md{
  border-radius: 0;
}

#content-area div.my-4{
  border-radius: 0;
  border-width: 1px;
}

#content-area div.flex-1 {
  /* text-transform: uppercase; */
  opacity: 0.8;
  font-weight: 400;
}

#content-area button {
  border-radius: 0;
}

#content-area a {
  border-radius: 0;
}

#content-area .not-prose {
  border-radius: 0;
}

/* .eyebrow {
  text-transform: uppercase;
  font-weight: 400;
  color: red;
} */

#content-container {
  /* background-color: #f5f5f5; */
  margin-top: 2rem;
}

#topbar-cta-button .group .absolute {
  background-color: black;
  border-radius: 0px;
}

/* #topbar-cta-button .group .absolute:hover {
  background-color: white;
  border-radius: 0px;
} */

#topbar-cta-button .group .flex {
  margin-top: 5px;
  margin-bottom: 5px;
  font-size: medium;
}

.flex-1 .flex .items-center {
  /* background-color: #f5f5f5; */
}


Learn how to create a Private CA hierarchy and issue X.509 certificates.

Overview

Internal PKI

Infisical

An Introduction to the Infisical secret management platform.

What is Infisical?

Learn more and understand the concept of Infisical organizations.

Organizations

Learn more and understand the concept of Infisical projects.

Projects

Learn how to organize secrets with folders.

Folders

Learn how to manage and apply project templates

Project Templates

Learn how to share time & view-count bound secrets securely with anyone on the internet.

Secret Sharing

Scan and prevent secret leaks in your code repositories

Secret Scanning

Infisical service tokens allow users to programmatically interact with Infisical.

Service Token

Learn how to secure your Infisical account with MFA.

Multi-factor Authentication

Learn how to automatically synchronize your GitHub teams with Infisical Groups.

GitHub Team Sync

Learn how to self-host Infisical on your own infrastructure.

Introduction

How to upgrade Infisical self-hosted instance

Upgrade Infisical Instance

Read how to configure environment variables for self-hosted Infisical.

Environment Variables

Find out the minimal requirements for operating Infisical.

Hardware requirements

Find out how to activate Infisical Enterprise edition (EE) features.

Infisical Enterprise

Frequently Asked Questions about self-hosting Infisical.

Understand Infisical's core architectural components and how they work together.

Components

Infisical's security model includes many considerations and initiatives.

Security

 Learn about our bug bounty program and how to report vulnerabilities.

Bug bounty program

Understanding service tokens and their best practices.

Service tokens

This page describes how to manage secrets using Infisical Agent.

Infisical Agent

Learn how to fetch secrets from Infisical with Terraform using both traditional data sources and ephemeral resources

Terraform

Using Infisical with Pulumi via the Terraform Bridge

Pulumi

Learn how to use Infisical for secret management in Ansible.

Ansible

Learn how to use Infisical as your custom secrets backend in Apache Airflow.

Apache Airflow

Learn how to manage and configure third-party app connections with Infisical.

Learn how to sync secrets to third-party services with Infisical.

How to sync secrets from Infisical to Vercel

Vercel

How to sync secrets from Infisical to Azure Key Vault

Azure Key Vault

How to sync secrets from Infisical to Azure App Configuration

Azure App Configuration

How to sync secrets from Infisical to Azure DevOps

Azure DevOps

How to sync secrets from Infisical to GCP Secret Manager

GCP Secret Manager

How to sync secrets from Infisical to Terraform Cloud

Terraform Cloud

Learn how to sync secrets from Infisical to Databricks.

Databricks

How to effectively and securely manage secrets in Jenkins using Infisical

Jenkins Plugin

How to sync secrets from Infisical to GitHub Actions

GitHub Actions

How to sync secrets from Infisical to GitLab

GitLab

How to sync secrets from Infisical to Bitbucket

Bitbucket

How to sync secrets from Infisical to TeamCity

TeamCity

How to use Infisical to inject environment variables into Java Spring Boot

Spring Boot with Maven

How to use Infisical to inject environment variables and secrets into a React app.

React

How to use Infisical to inject environment variables and secrets into a Vue.js app.

How to use Infisical to inject environment variables and secrets into an Express app.

Express, Fastify, Koa

How to use Infisical to inject environment variables with Gradle

Gradle

A powerful plugin that integrates Infisical secrets management into your Backstage developer portal.

Backstage Infisical Plugin

Infisical's CLI is one of the best ways to manage environments and secrets. Install it here

Install

Quickstart

Scan and prevent secret leaks in your code base

Secret scanning

Project config file & customization options

Project config file

Frequently Asked Questions about Infisical CLI

API Reference

Learn how to authenticate with the Infisical Public API.

Authentication

SDKs

Node.js

Infisical Node.js SDK

Python

Infisical Python SDK

Java

Infisical Java SDK

Infisical Go SDK

Ruby

Infisical Ruby SDK

.NET

Infisical .NET SDK

Changelog

Integrations

Start for Free

Log In

Learn how to manage secrets in local development environments.

Local Development

Secret Management in Development Environments

Node

Next.js + Vercel

Learn how to manage secrets in Microsoft Power Apps with Infisical.

Microsoft Power Apps

Learn how to structure your projects, secrets, and other resources within Infisical.

Organization Structure

Infisical Organizational Structure Blueprint

Network configuration details for Infisical Cloud

Networking

Learn how secret versioning works in Infisical.

Secret Versioning

Learn how to rollback secrets and configurations to any snapshot with Infisical.

Point-in-Time Recovery

Learn the fundamentals of secret referencing and importing in Infisical.

Referencing and Importing

Secret Referencing and Importing

Learn the fundamentals of Infisical webhooks.

Webhooks

Learn how to create a Private CA hierarchy with Infisical.

Private CA

Learn how to connect External Certificate Authorities with Infisical.

External CA

Learn how to manage PKI subscribers and issue X.509 certificates for them.

Subscribers

Learn how to issue X.509 certificates with Infisical.

Certificates

Learn how to automatically provision and manage TLS certificates using ACME Certificate Authorities like Let's Encrypt with Infisical PKI

Certificates with ACME CA

Learn how to automatically provision and manage TLS certificates for in Kubernetes using Infisical PKI

Certificates for Kubernetes

Kubernetes Issuer

Learn how to manage certificate enrollment of clients using EST

Enrollment over Secure Transport (EST)

Learn how to set up alerting for expiring certificates with Infisical

Alerting

Learn how to securely provision user SSH access to your infrastructure using SSH certificates.

Infisical SSH

Learn how to organize SSH hosts into groups and manage access policies at scale.

Host Groups

Learn how to manage and use cryptographic keys with Infisical.

Key Management Service (KMS)

Learn more about integrating an HSM with Infisical KMS.

HSM Integration

Kubernetes Encryption

Kubernetes Encryption with KMS

Learn more about integrating with Infisical KMS using KMIP (Key Management Interoperability Protocol).

KMIP Integration

Learn how to configure your project's encryption

Key Management Service (KMS) Configuration

Learn how to manage encryption using AWS KMS

AWS Key Management Service

Learn how to manage encryption using AWS CloudHSM

AWS CloudHSM

Learn how to manage encryption using GCP KMS

GCP Key Management Service

Learn more about identities to interact with resources in Infisical.

User and Machine Identities

Read more about the concept of user identities in Infisical.

User Identities

Learn how to use Machine Identities to programmatically interact with Infisical.

Machine Identities

Learn about Infisical's access control toolset.

Access Controls

Learn how to use RBAC to manage user permissions.

Role-based Access Controls

Learn how to add specific privileges on top of predefined roles.

Additional Privileges

Learn how to set up timed access to sensitive resources for user and machine identities.

Temporary Access

Learn how to temporarily assume the privileges of a user or machine identity within a project.

Assume Privileges

Learn how to request access to sensitive resources in Infisical.

Access Requests

Learn how to request access to projects in Infisical.

Project Access Requests

Learn how to enable a set of policies to manage changes to sensitive secrets and environments.

Getting Started

Platform

Authentication Methods

Self-host Infisical

Internals

Contributing

Internal PKI