# Secrets Management

{% hint style="warning" %}
Note that you'll only see this section if you have Admin or Owner user permissions. Learn more about permissions in [this article](/administration/global-settings/tenant/users.md).
{% endhint %}

## Overview

There can be instances in Onum where you need to use sensitive values such as usernames, passwords, API keys, authorization tokens, etc. You can add these values here and use them whenever needed.

<figure><picture><source srcset="/files/jZFzFpgz1yvb3kqJbjD0" media="(prefers-color-scheme: dark)"><img src="/files/bW2URvpW5qo1P3W9kH2g" alt=""></picture><figcaption></figcaption></figure>

In the **Secrets Management** view, you can search for a secret or, if you have the required permissions, turn them on or off.

### Create a New Secret

In the **Secrets Management** view, click **New secret** to define a new secret. You'll need to fill the following parameters:

#### Metadata

<table><thead><tr><th width="164.359375">Parameter</th><th>Description</th></tr></thead><tbody><tr><td><strong>Name</strong><mark style="color:red;"><strong>*</strong></mark></td><td>Give a name to your new secret.</td></tr><tr><td><strong>Description</strong></td><td>Optionally, enter a description for the secret.</td></tr><tr><td><strong>Tags</strong></td><td>Add tags to easily identify your secret. Hit the <code>Enter</code> key after you define each tag.</td></tr></tbody></table>

#### Configuration

<table><thead><tr><th width="164.359375">Parameter</th><th>Description</th></tr></thead><tbody><tr><td><strong>Expiration date</strong></td><td><p>You can set an expiration date for the new secret. Activate the toggle and choose the date in the calendar. </p><p>Although you can disable expiration dates, it is recommended to set one for best security practices.</p></td></tr><tr><td><strong>Secret active</strong></td><td>Permission permitting, you can decide whether the secret can be activated/deactivated at any point.</td></tr></tbody></table>

#### Value

<table><thead><tr><th width="164.359375">Parameter</th><th>Description</th></tr></thead><tbody><tr><td><strong>Add new value</strong></td><td>Here is where you enter your secret value. This will be the password/access key/certificate, etc. itself. Click the button and simply type in the secret value to be stored.</td></tr></tbody></table>

When you have finished, click **Save** in the right-hand corner. The new secret will appear in the **Secrets management** table.

### Delete a Secret

You can remove a secret at any time using the ellipse next to its name in the **Secrets management** table.

{% hint style="warning" %}
If your secret is being used anywhere (Pipeline, Data sink...) you won't be able to delete it.&#x20;

In those cases, you'll be prompted with a warning indicating the items where it is being used. To delete the secret, it must not be used anywhere in your Tenant.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.onum.com/administration/global-settings/organization-settings/secrets-management.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.