Is there a way I can increase vault’s security by attaching it only to certain machines. Meaning: only certain machines can decrypt vault credentials.
Eg. My workstations are in: machine2.domain.com and machine2.domain.com. I do not want any other machine to decrypt vault credentials. Even if my user.pem file gets compromised, hacker will not be able to crack password unless he has access to machine1 or machine2.