diff --git a/pages/common/vault.md b/pages/common/vault.md
new file mode 100644
index 0000000000..fa927e6895
--- /dev/null
+++ b/pages/common/vault.md
@@ -0,0 +1,27 @@
+# vault
+
+> A CLI to interact with HashiCorp Vault.
+
+- Connect to a Vault server and initialize a new encrypted data store:
+
+`vault init`
+
+- Unseal (unlock) the vault, by providing one of the key shares needed to access the encrypted data store:
+
+`vault unseal {{key-share-x}}`
+
+- Authenticate the CLI client against the Vault server, using an authentication token:
+
+`vault auth {{authentication-token}}`
+
+- Store a new secret in the vault, using the generic back-end called "secret":
+
+`vault write secret/{{hello}} value={{world}}`
+
+- Read a value from the vault, using the generic back-end called "secret":
+
+`vault read secret/{{hello}}`
+
+- Seal (lock) the Vault server, by removing the encryption key of the data store from memory:
+
+`vault seal`