• Terraform Cloud
    • HCP Vault
    • HCP Consul
    • HCP Packer
  • Pricing
  • Documentation
  • Tutorials
  • Community
Sign InTry cloud for free
    • What is HCP?
      • AWS
      • Overview
        • Create and Manage HVN
        • Peering Connections
        • Transit Gateway Attachements
        • Routes
        • Security Groups
        • Overview
        • Users
        • Service Principals
        • Organizations
        • Single Sign-On
        • Multi-Factor Authentication
        • Overview
        • Payment
        • Flex Billing
      • Support
    • What is HCP Consul?
    • Specifications
      • Overview
      • Clusters
      • Clients
      • Federation
      • Upgrades
      • Audit Logs
      • Snapshots
      • Tutorials
      • Consul Documentation
      • Forums
    • Overview
    • Security Overview
    • Get Started
    • Login MFA
    • High Availability and Disaster Recovery
    • Performance Replication
    • Version Management
    • RBAC Permissions
    • Administrative Capabilities
    • Audit Log Management
      • Overview
      • FAQ
    • Metrics
    • Constraints and Known Issues
    • Migrate to HCP Vault
    • What is HCP Packer?
    • Get Started
      • Template Configuration
      • Image Metadata
      • Image Buckets
      • Image Channels and Revocation
      • Terraform Cloud Run Tasks
    • Reference Image Metadata
    • Manage Registry
    • API Reference
    • Packer Documentation
  • Glossary
  • Changelog
Type '/' to Search

»HCP Vault Multi-Region Support

HCP Vault supports delivering your Vault cluster to multiple regions with just a few steps. Delivering your Vault cluster to multiple regions allows you to support applications that are delivered globally and reduces latency to your secrets.

Note: Clusters are currently limited to be extended to a single additional region.

»What is Performance Replication?

Performance replication allows the Vault functionalities such as identity management, secrets storage, and policy management to scale across the regions. This lets Vault clients read and write secrets from an HCP Vault cluster closest to them.

Performance Replication

It operates on a leader/follower model, wherein a leader cluster (known as a primary) is linked to its follower secondary cluster. The primary cluster acts as the system of record and asynchronously replicates most Vault data.

The secondary cluster keeps track of their own tokens and leases but shares the underlying configuration (e.g., auth method configuration), policies, and secrets. If a user action modifies the underlying shared state, the secondary forwards the request to the primary and the changes are transparent to the client.

»Tutorial

See the HCP Vault Performance Replication tutorial for step-by-step instructions.

  • Learn about HCP

    • Blog
    • Press Release
  • Resources

    • Tutorials
    • Documentation
  • Help

    • Community
    • Support
    • Contact Us
  • Terms of Service
  • SLA
  • Shared Responsibility Model
  • Privacy
  • Security
  • Press Kit
©2021 HashiCorp, Inc. All rights reserved