Today at HashiConf 2017 in Austin, Texas, we announced major updates and new features across our entire suite of open source and enterprise products.
We announced updates to HashiCorp Terraform, Vault, Consul, and Nomad. In addition to these product updates, we announced the release of Sentinel, our new policy as code framework that integrates across the Enterprise product suite, and the Terraform Module Registry, which provides example infrastructure templates to make provisioning across cloud environments easier.
This blog will provide details on each of the announcements and where to go for more information.
Sentinel enables organizations to define guardrails to safely automate infrastructure operations. A policy as code approach builds on the infrastructure as code philosophy of our existing tools, and brings the same benefits to security and compliance teams. Sentinel made of several components, including a new policy-oriented language, embedded runtime, development simulator, and plugin SDK. Sentinel is integrated across the HashiCorp Enterprise products, enabling active policy enforcement. For more information on Sentinel's policy as code framework, including key examples using Terraform, Vault, Nomad, and Consul, visit the Sentinel announcement blog.
To help Terraform users get started and be more productive, we’ve released the HashiCorp Terraform Module Registry, a public repository of templates for common infrastructure patterns and popular services. These templates include support for Alibaba Cloud, AWS, Google, Microsoft Azure, and Oracle clouds, Kubernetes, and the HashiCorp products. To learn more, visit the Terraform Module Registry blog.
We announced the beta release of Terraform Enterprise, which includes a new user interface and full API. The new release focuses around “Workspaces” which were introduced by Terraform 0.10 as a better way to manage and collaborate on infrastructure. The new features make it easier for practitioners to support multiple environments like staging and production, and allows security and compliance teams to apply the security and governance controls they need. For more details and additional information, visit the Terraform Enterprise Beta blog.
HashiCorp Vault 0.8.3 features support for Kubernetes. Vault integration with Kubernetes extends our platform-agnostic approach to secrets management and furthers the support of secure secrets management in modern environments and container workflows. The release provides native Kubernetes integration without additional integration components or requirements. Additionally, Vault Enterprise integrates seamlessly with Sentinel to further the capabilities of policy-based secrets management, and provides more control and depth to Vault's security model and policy system. To find out more, visit the Vault 0.8.3 blog.
We are excited to announce Consul 1.0. Consul joins Vagrant and Packer as the third HashiCorp product to reach the 1.0 milestone. Consul 1.0 open source includes improvements to the Access Control List (ACL) system to make bootstrapping and configuring ACLs easier, and Autopilot enhancements to handle more version upgrade scenarios, and more. The beta releases of Consul 1.0 and Consul Enterprise 1.0 will be available later this week.
We announced the beta release for HashiCorp Nomad 0.7, our flexible and high-performance scheduler. This release includes an access control system to enable operators to limit access to APIs and jobs, as well as an integrated graphical user interface to explore the status of jobs, task groups, tasks and allocations. This release enables a better self-service workflow for developers and improved visibility for operators.
In addition to the Nomad 0.7 open source changes, we announced the beta release of Nomad Enterprise, a new addition to our enterprise product portfolio. Nomad Enterprise adds important governance features for large enterprises, including namespaces, which will allow multiple tenants to safely use a shared cluster, as well as resource quotas, which will allow an administrator to limit resource consumption by namespace. Additionally, Sentinel is integrated in Nomad Enterprise which enforces policies on the job specification.
Dynamic provider credentials for Terraform Cloud provide a simple and safe authentication workflow for Vault and official cloud providers.
The HashiCorp Vault ecosystem continues to grow with the addition of 25 new integrations this past quarter.
CDK for Terraform (CDKTF) 0.15 improves on its ease of use with Terraform Cloud and Terraform Enterprise through automatic Terraform workspace creation.