Docs

All documentation
Connectivity Cellular, LPWAN, and satellite
- Cellular
  - Cellular (Soracom Air)
  - SIM Management
- LAN & WiFi
  - Soracom Arc
- LPWAN
  - LPWAN / LoRaWAN
- Sigfox
  - Sigfox
- Satellite
  - Satellite
Hardware Devices and modules
Platform Console, configuration, account, billing
- Console & Navigation
  - Console
- Configuration
- SIM & Fleet Ops
- Account & Access
- Billing
  - Usage & Invoices
Cloud Integration Route data to cloud services
- Data Entry Point
  - Data Entry Point
- Protocol Conversion & Forwarding
  - Protocol Conversion & Forwarding
- Serverless Triggers
  - Serverless Triggers
- Direct Cloud Delivery
  - Direct Cloud Delivery
- Inline Data Transformation
  - Inline Data Transformation
- Video Streaming
  - Video Streaming
Data & Analytics Store, visualize, and query
- Data Collection & Storage
  - Soracom Harvest
- Dashboards & Alerts
  - Dashboards & Alerts
- Data Analytics
  - Data Analytics
- IoT Automation
  - IoT Automation
Network & Security Private networking and VPN
- VPG Sub-features
- Credential Provisioning
  - Credential Provisioning
- SIM Authentication
  - SIM Authentication
Device Management Firmware, provisioning, inventory
- Fleet Management
  - Fleet Management
- Device Commands
  - Device Commands
- Remote Access
  - Remote Access

Documentation navigation

Docs

All documentation
Connectivity Cellular, LPWAN, and satellite
- Cellular
  - Cellular (Soracom Air)
  - SIM Management
- LAN & WiFi
  - Soracom Arc
- LPWAN
  - LPWAN / LoRaWAN
- Sigfox
  - Sigfox
- Satellite
  - Satellite
Hardware Devices and modules
Platform Console, configuration, account, billing
- Console & Navigation
  - Console
- Configuration
- SIM & Fleet Ops
- Account & Access
- Billing
  - Usage & Invoices
Cloud Integration Route data to cloud services
- Data Entry Point
  - Data Entry Point
- Protocol Conversion & Forwarding
  - Protocol Conversion & Forwarding
- Serverless Triggers
  - Serverless Triggers
- Direct Cloud Delivery
  - Direct Cloud Delivery
- Inline Data Transformation
  - Inline Data Transformation
- Video Streaming
  - Video Streaming
Data & Analytics Store, visualize, and query
- Data Collection & Storage
  - Soracom Harvest
- Dashboards & Alerts
  - Dashboards & Alerts
- Data Analytics
  - Data Analytics
- IoT Automation
  - IoT Automation
Network & Security Private networking and VPN
- VPG Sub-features
- Credential Provisioning
  - Credential Provisioning
- SIM Authentication
  - SIM Authentication
Device Management Firmware, provisioning, inventory
- Fleet Management
  - Fleet Management
- Device Commands
  - Device Commands
- Remote Access
  - Remote Access

Credentials Store

The Credentials Store provides a secure vault for storing authentication credentials used by Soracom platform services. When Beam, Funnel, Funk, or other services need to authenticate with external cloud providers, they reference credentials stored here rather than embedding secrets in device configurations.

What it does

Secure storage: Store API keys, access tokens, certificates, and other credentials in an encrypted vault
Service integration: Reference stored credentials from Beam, Funnel, Funk, and Krypton configurations
Multiple credential types: Support AWS IAM roles, Azure connection strings, GCP service accounts, and generic API keys
Access control: Limit credential access to specific SAM users and roles
Audit trail: Track credential creation, updates, and usage through audit logs

Common use cases

Storing AWS IAM credentials for Beam and Funnel cloud forwarding
Managing TLS certificates for MQTT endpoint authentication
Centralizing API keys used across multiple service configurations

Soracom Beam — Uses stored credentials for authenticated forwarding
Soracom Funnel — References credentials for cloud adapter authentication
SAM Users & Roles — Control who can manage credentials

Credentials Store

What it does

Common use cases

Related