Secret management is an important security service within the EGI Cloud Federation, encompassing the management of various types of secrets, including tokens and certificates, along with their secure delivery to target cloud environments. Given its critical role, high availability and security are paramount. The service must remain operational continuously, even in the event of individual component failures. This is achieved through the configuration of three geographically distributed Vault servers connected in a cluster, complemented by Dynamic DNS to facilitate seamless switching of generic service endpoints during failures. Additionally, the service incorporates several security enhancements, including client-side encryption and a locker mechanism to ensure the secure delivery of secrets to virtual machines (VMs) in the cloud.