Ansible Vault allows users to encrypt sensitive data stored in Ansible files. It encrypts values using a password provided during encryption. Users can encrypt files like variables, inventory, templates, tasks and playbooks. Encryption is done via passing a password file or stdin. Decryption requires the vault password file or entering the password. Common files encrypted include variables containing passwords, private keys or other secrets.