diff --git a/README.md b/README.md
index 1fd33f26bd2038f949b5f13cefcbddb74b26d6eb..df90cf276e7edf482c30fa04c27617f02ffef322 100644
--- a/README.md
+++ b/README.md
@@ -123,8 +123,18 @@ ENV variable VAULT_TOKEN in [signer.env](./env/signer.env)
 
 Vault UI is exposed at http://0.0.0.0:8200/ui/vault
 
+Setting Vault __(only for local env)__:
+1. On the first screen of the Vault Web UI enter "Key shares" = 1 and "Key threshold" = 1
+1. Click Initialize
+1. Save key/token
+1. Unseal Vault by using the key
+1. Sign in by using the token (the same one you need for VAULT_TOKEN env variable)
+1. On the "Secrets" tab click "Enable new engine" => "transit" => "next" => "Enable engine"
+1. Click "Create encryption key" enter name "key1"
+1. For "Type" use one of the options in [signer.env](./env/signer.env) for VAULT_SUPPORTED_KEYS
+1. Click "Create encryption key"
 
 ## License
 <hr/>
 
-[Apache 2.0 license](LICENSE)
\ No newline at end of file
+[Apache 2.0 license](LICENSE)