Deckhouse Stronghold is available in Community Edition (CE) and Enterprise Edition (EE).
Deckhouse Stronghold Community Edition is available for use in any Deckhouse Kubernetes Platform editions.
Deckhouse Stronghold Enterprise Edition is licensed separately and available for use in any commercial edition of the Deckhouse Kubernetes Platform.
The table below provides brief a comparison of editions listing its main features and functions:
| Feature | CE | EE |
|---|---|---|
| Secure management of the lifecycle of secrets (storage, creation, delivery, revocation, and rotation) |  |
|
| The ability to use IaC automation tools Ansible and Terraform | |
|
| Support for authentication methods | JWT, OIDC, Kubernetes, LDAP, Token | JWT, OIDC, Kubernetes, LDAP, Token, TLS |
| Support for Secret Engines KV, Kubernetes, Database, SSH, PKI | |
|
| Deploying to an air-gapped environment | |
|
| Administrator web interface | |
|
| Role and access policy management through a web interface |  |
|
| Support for namespaces | |
|
| Built-in automatic unsealing of the vault | |
|
| Data replication | |
KV1/KV2 |
| Automatic backup creation on a schedule | |
|
| Audit logging support | |
|
| Delivery as standalone executable file | |
|
| Launching in Deckhouse Kubernetes Platform Community Edition | |
|
| Technical support «Standard» |  |
|
| Technical support «Standard +» | |
|