Integrate your NHIs sources
Monitor your perimeter
NHI Governance supports a range of integrations that connect to your existing systems where NHIs are created, stored, or used. These integrations enable the platform to automatically inventory NHIs, capture key metadata (such as context, usage, and scope), and provide continuous visibility into their lifecycle and security posture.
Supported integrations
NHI Governance offers native support for widely-used secrets managers and infrastructure components where NHIs typically reside or operate.
GitGuardian integrates with a set of sources across your infrastructure through ggscout a lightweight, auditable application that safely collects secrets and their metadata from your configured secret managers, without exposing secret values. It hashes the data locally before securely sending it to your GitGuardian workspace.
Secrets Managers
GitGuardian integrates with Secrets Managers as a primary source of truth for secrets and tied NHIs. Supported Secrets Managers:
- HashiCorp Vault
- CyberArk Conjur Cloud
- Akeyless Secrets Management Platform
- AWS Secrets Manager
- Google Cloud Secret Manager
- Azure Key Vault
- Delinea Secret Server
Learn more on Secrets managers integrations.
CI and Infrastructure sources
GitGuardian also integrate with CI and Infrastructure sources to collect additional NHIs and provide additional insights to those already collected, such as understanding where NHIs are used and consumed. Supported sources:
- GitLab CI
- Kubernetes clusters
Contextualize your NHIs sources
When configuring your integrations, you can manually assign an environment category to each data source (e.g., a specific vault or Kubernetes cluster) directly in the ggscout configuration file. This helps you contextualize NHIs based on their operational scope—such as distinguishing between production and development identities.
Supported categories:
prod- Productionpreprod- Pre-productionstaging- Stagingtesting- Testingdev- Development
