We are excited to announce additional hands-on guides to help you learn and integrate Vault as your secrets management solution. Several pre-existing guides have also been updated.
- Auto-Unseal with Transit Secrets Engine guide demonstrates the Transit seal configuration introduced in Vault 1.1.
- OpenID Connect (OIDC) Auth Method guide demonstrates OIDC support which was introduced in Vault 1.1.
Learn right in your web browser with the following Katacoda interactive scenarios which have recently been added:
- Vault Agent walks through the basic workings of Vault Agent Auto-Auth and Caching.
- Vault Auto-Unseal walks through how to setup auto-unseal with the Transit secrets engine.
In addition to AliCloud KMS, Amazon KMS, Azure Key Vault, and Google Cloud KMS, Vault 1.1 added support for the Transit Secrets Engine to auto-unseal your Vault.
This guide walks you through the steps necessary to configure Transit Auto-Unseal.
If you don't have a Vault environment to perform the tasks described in this guide, try the Vault Auto-Unseal Katacoda interactive tutorial in your web browser.
Vault clients must first authenticate with Vault to acquire a valid token. Vault 1.1 introduced support for OpenID Connect (OIDC) as an auth method which is provided by many authentication services such as Auth0.
This guide walks through the configuration of the OIDC auth method using Auth0 as its OIDC provider.
NOTE: Refer to the Vault OpenID Demo for an example using Google OAuth.
Vault Agent was first introduced in Vault 0.11 as a client daemon to automate the authentication and token lifecycle management. Vault 1.1 introduced its caching mechanism to further improve the efficiency of token and lease management.
This Katacoda scenario demonstrates both Auto-Auth and Caching of Vault Agent using the
approle auth method. If you don't have a Vault environment, try the Katacoda interactive tutorial today!
If you don't have a Vault environment to experiment with Transit Auto-Unseal, try this interactive tutorial in your web browser.
It is designed to demonstrate the overall workflow on both ends.