Cloud Partner


HashiCorp and AWS have a long standing partnership driven by both the companies and the community built around their tools. The proactive engagement of the open source community enables many HashiCorp products to have immediate support for new services provided by AWS. HashiCorp is an active member of the Amazon Partner Network and currently an Advanced Tier Technology Partner. Additionally, HashiCorp holds a DevOps Competency which certifies both technical proficiency and proven customer success. Quick start guides for Consul, Nomad, and Vault are available via the AWS Quick Start Library and are among the most popular in the DevOps category. Organizations of all sizes trust HashiCorp tools to provision, secure, run, and connect any application running in AWS.



How AWS works with HashiCorp Product Suite

» Provision Infrastructure

Operators moving into the cloud face three unique challenges: addressing infrastructure heterogeneity, managing scale, and enabling self service consumption across organizations. To address these challenges for users adopting AWS, HashiCorp offers a dedicated Terraform provider for the purpose of provisioning and managing AWS cloud-based services. Users can write configurations using infrastructure as code, check them into version control, version them, and run a few commands to test and apply changes to their AWS infrastructure.

Terraform Integrations for AWS:
Terraform Provider
AWS Modules
AWS EKS Getting Started Guide
AWS Lambda with API Gateway Getting Started Guide

Additional Resources:
Terraform Beyond the Basics
Managing Amazon ElastiCache with Terraform

Get Started with Terraform Read Documentation

» Secure Secrets

Vault provides organizations with a central place to store and access all infrastructure and application secrets, while leveraging any trusted source of identity to enforce system and application access, all while keeping your secrets and application data secure with one centralized workflow to encrypt your data in flight and at rest. For AWS users, Vault offers a number of specific integrations like using your AWS IAM or EC2 credentials and identity, as well as Auto Unseal with AWS KMS and a dedicated Secrets Engine for generating, managing, and encrypting data within AWS. Using Vault with AWS makes it easy to ensure policy is being enforced across your entire organization while transitioning to a dynamic infrastructure.

Vault Integrations for AWS:
AWS Auth Method
AWS Secrets Engine
Auto Unseal with AWS KMS

Additional Resources:
Quick Start Guide

Get Started with Vault Read Documentation

» Run Applications

Nomad is a flexible, enterprise-grade cluster scheduler that can run a diverse workload of micro-service, batch, containerized and non-containerized applications. Nomad's lightweight architecture and zero external dependencies minimize operational overhead in any on-prem or public cloud environment. Nomad Enterprise adds collaboration and governance capabilities, allowing organizations to run Nomad in a mult-team setting and meet governance and policy requirements. Nomad clients running on AWS are able to automatically detect EC2 instances. This enables application owners to define constraints that directly reference instance properties including the instance type and AMI ID. This in turn allows operators to deploy Nomad across a heterogenous mix of instance types with resource profiles appropriate for a range of workloads.

Additional Resources:
Quick Start Guide

Get Started with Nomad Read Documentation

» Connect Applications

Consul is a tool for discovering and configuring services within your infrastructure. Consul clusters allow agents to talk across data centers to provide health monitoring, K/V storage, and a variety of other services. To create these clusters, Consul relies on the creation of agents that assume either a server or client role and join an existing cluster upon startup. To help prevent failures in cluster formation, Consul users utilizes the command "retry-join" provisioned for AWS. This instructs agents to join the first private IP of a server within a given region and authorized via shared credentials.

Consul Integrations for AWS:
Auto Retry for AWS
Consul Connect Service Mesh
Enabling Service Discovery Across Hybrid Infrastructure using HashiCorp Consul and AWS Cloud Map

Additional Resources:
Quick Start Guide

Get Started with Consul Read Documentation