Presentation

Secure Cloud API Access with HashiCorp Vault

Published 8:00 AM UTC Jan 28, 2020

HashiCorp Solutions Engineer Sean Carolan introduces Vault in the first half of this DevOpsDays Austin talk, and gives a live Instruqt demo in the second half.

Speakers

Looking for the most basic way to learn the concepts of cloud security and secrets management? Check out this talk and demo from DevOpsDays Austin introducing HashiCorp Vault and the concepts of dynamic secrets.

What the Open Source Version of Vault Can Do

Vault doesn't just store and propagate existing, static secrets in a secure manner. It also has the ability to generate credentials from AWS, GCP, Azure, or databases like MySQL, MongoDB, and PostgreSQL. It can generate secrets for a number of other infrastructure components like service discovery, message queues, and more.

Vault can also revoke and give credentials a lifespan, making it impossible for an attacker to carry out a long-term hack even if they manage to get credentials.

The Demo: AWS Dynamic Secrets with Vault

This demo shows exactly how to set up dynamic Vault credentials in the cloud (same workflow works for GCP, Azure, and Active Directory too) with only the necessary privileges. Try out the interactive demo-lesson for yourself: AWS Dynamic Secrets with Vault on Instruqt

More resources like this one

  • 2/3/2023
  • Case Study

Automating Multi-Cloud, Multi-Region Vault for Teams and Landing Zones

  • 1/5/2023
  • Case Study

How Discover Manages 2000+ Terraform Enterprise Workspaces

  • 12/22/2022
  • Case Study

Architecting Geo-Distributed Mobile Edge Applications with Consul

zero-trust
  • 12/13/2022
  • White Paper

A Field Guide to Zero Trust Security in the Public Sector

View all resources