Managing Secrets

New
  • Updated on Apr 28, 2025
  • Published on Apr 20, 2025
  • 4 minute(s) read
  • s
 Prev Next

Introduction

The Secrets module in Workforce Experience Platform (WXP) Fleet Management provides a secure way to store and manage sensitive credentials used in remediation workflows. It supports storing BIOS passwords and Secure Platform Management (SPM) certificates, which are referenced by policies during automated remediation. This eliminates the need to manually enter credentials during script execution, thereby improving security through controlled access, and ensures compliance with audit and RBAC requirements.

This article provides a step-by-step guide to:

Viewing Secrets Listing Page

  1. Log in to WXP. The Home page is displayed
  2. From the left menu of WXP, click Remediation > Secrets. The existing list of secrets is displayed in a tabular format, showing the following columns:
Name Description
Name A unique name of the secret.
Status Indicates whether the secret is currently assigned or unassigned to a policy.
Type The type of secret:
• Password: Used in BIOS Authentication Policies.
• SPM Certificate: Used to secure BIOS Settings Policies.
Tags Custom tags used to organize secrets by purpose, project, or policy type.
Modified on The time when the secret was last updated.
Modified by The user who last modified the secret.
Created on The time when the secret was created.
Created by The user who created the secret.
  1. Usine the gear icon for Column Options, you can add new columns or remove existing ones. However, default columns cannot be removed.

Reviewing Individual Secret

  1. From the left menu of WXP, click Remediation > Secrets. The existing list of secrets is displayed in a tabular format.
  2. Click on the name of a secret. The Secret details page is displayed and data is shown across three tabs - Overview, Assignments, and History
  3. The Overview tab is the default view and displays Secret name, Secret Type, Creation date, Assigned tags, Secret ID and more.
    1. if SPM certificates are applicable, this tab also shows the endorsement key or signing key or both.
    2. If BIOS password is set, you can additionally view Complexity Rules and BIOS password.
  4. Click the Assignments tab to view a list of remediation policies where the specific secret is used, and their assignment status.
    1. Clicking the Policy name takes your to the Policty detauls page.
  5. Click the History tab to view a log of changes made to the secret, including the user who created the secret, the time when it assgined to a policy, and the last action performed.

Adding a Secret

  1. From the left menu of WXP, click Remediation > Secrets. The existing list of secrets is displayed in a tabular format, along with an option to Add secrets.
  2. On the Secrets page, click Add. You are taken to the Add PC Secret page.
  3. Enter the following details:
    • Secret Name: The name of the secret.
    • Secret Type: Select one of two types - SPM Certificates and Password.
    • (Optional)Description: A brief description of the secret to define the secret for use in remediation policies.
    • (Optional) Tag: Add one or more tags to support filtering and organization.
  4. Click Next to proceed.
  5. Based on the Secret Type (SPM Certification or Password), the corresponding fields are shown.
    • If using an SPM certificate, generate or upload keys. For the endorsement key, and the signing key, select Create certificate or Upload certificate.
    • If using a password, define password complexity rules, ensure the password meets internal security requirements.
  6. Click Next to proceed.
  7. Review the details and click Add to complete the process. A popup is displayed with a success message.

Editing a Secret

  1. From the left menu of WXP, click Remediation > Secrets. The existing list of secrets is displayed in a tabular format.
  2. Select a secret from the listing page or use the search box to enter the keywords to find a secret.
  3. Click on a secret to view its details page. The editable fields are shown with a pencil icon.
  4. Click the pencil icon. The editable fields are displayed in the right panel.
  5. Update the required fields.
  6. Click Apply. When the changes are updated, a popup is displayed with a success message.

The changes can be viewed in the Secret details page.

Deleting a Secret

  1. From the left menu of WXP, click Remediation > Secrets. The existing list of secrets is displayed in a tabular format.
  2. Select a secret from the listing page or use the search box to enter the keywords to find a secret.
  3. Click on a secret to view its details page. The Delete option is displayed on the top right.
  4. Click Delete. When the delete action is successful, a popup is displayed with a success message.

The deleted secret is removed from the Secrets listing page.

Related Resources

For additional information, refer to the following articles:

Contact Us

For any assistance, create a support case or email [email protected].

Related articles