Zero trust security with HashiCorp and Microsoft Azure

Trust nothing. Authenticate and authorize everything.

Customers who trust this solution

  • ABN AMRO
  • Elvia
  • Mercedes-Benz Research & Development North America, Inc.
  • BCP

Challenges of multicloud security

The transition from traditional on-premises datacenters and environments to dynamic, cloud infrastructure is complex and introduces new challenges for enterprise security. There are more systems to manage, more endpoints to monitor, more networks to connect, and more people that need access. The potential for a breach increases significantly, and it is only a matter of time without the right security posture.

Achieving zero trust security with HashiCorp and Microsoft Azure

HashiCorp Consul, Vault, Boundary, and Microsoft Azure have partnered together to enhance zero trust security initiatives at all levels of dynamic infrastructure with identity-based security.

Together our two organizations offer complimentary solutions that address making zero trust security a reality regardless of where organizations are in their journey to the cloud.

HashiCorp and Azure have worked together on a myriad of innovations. Examples of this innovation include tools that connect cloud-native applications to legacy infrastructure and tools that secure and automate the continuous deployment of customer applications and infrastructure

Brendan Burns Corporate Vice President, Azure Compute

Enabling identity-based securityacross environments

Together, HashiCorp and Microsoft Azure ensure that each access request (across clouds, on-prem, and low-trust networks) is authenticated, encrypted, and authorized with the least amount of privilege.

HashiCorp solution

Zero trust security is predicated on securing everything based on trusted identities. HashiCorp has identified four foundational categories for identity-driven controls across all layers of a dynamic network based on identity:

  • Machine authentication and authorization with Vault focuses on proving a machine’s identity and authorizing what a machine is enabled to do

  • Machine-to-machine access with Consul is about controlling which machines are allowed to speak to one another

  • Human-to-machine access with Boundary controls which humans are allowed to speak to which machines

  • Human authentication and authorization with third-party identity tools to enable single sign-on

HashiCorp offers just-in-time access to secrets (tokens, passwords, certificates), secure network connectivity, and remote access solutions for machine- and human-to-machine authentication and authorization.

Microsoft Azure solution

Microsoft Azure has identified five of the most impactful scenarios that agencies should build towards to implement zero trust architectures:

  • Cloud-ready authentication apps

  • Web apps with legacy authentication

  • Remote server administration

  • Segment cloud administration

  • Network micro-segmentation

Microsoft Azure’s trusted risk-based policies, identity and access management, SSO, and native security capabilities.

Microsoft Azure recognition

2019 Partner of the Year Winner OSS on Azure Award

2020 Partner of the Year Finalist OSS on Azure Award Alliance Global ISV Award

2021 Partner of the Year Winner OSS on Azure Award

Read more about how to implement zero trust security

Resources

Terraform logo
Meghan Liese avatar
Meghan Liese

Consul-Terraform-Sync Now Generally Available

HashiCorp Consul-Terraform-Sync (CTS) is now generally available. CTS enables operations to achieve Network Infrastructure Automation leveraging Terraform’s robust provider ecosystem.