Installing and Configuring HashiCorp Vault
HashiCorp Vault is a cloud-agnostic tool providing Secrets life-cycle management. This course will teach you the fundamentals of using HashiCorp Vault and how to install and configure a production instance.
What you'll learn
Proper management of Secrets is a critical component of securing applications, accounts, and certificates in your environment. In this course, Installing and Configuring HashiCorp Vault, you’ll learn the basics of interacting with Vault and how to deploy a production instance of the application. First, you’ll explore how to interact with a development instance of Vault. Next, you’ll discover how to plan out a production Vault server deployment. Finally, you’ll learn how to deploy Vault server and prepare it for use. When you’re finished with this course, you’ll have the skills and knowledge of HashiCorp Vault needed to install and configure HashiCorp Vault in your environment.
Table of contents
- Overview 1m
- Installing Vault 2m
- Development Mode Overview and Commands 3m
- Globomantics Scenario 0m
- Demonstration Overview 1m
- Installing the Vault Binary 2m
- Running the Development Instance 1m
- Vault CLI Overview 3m
- Using the Vault CLI 3m
- Vault UI Overview 1m
- Using the Vault UI 2m
- Vault API Overview 1m
- Using the Vault API 2m
- Module Summary 1m
- Overview 1m
- Vault Logical Architecture 3m
- Deployment Components 3m
- Deployment Considerations 4m
- Vault Server Configuration 2m
- Parameter Categories 2m
- Single Value Parameters 2m
- Listener Parameters and Syntax 4m
- Storage Backends 3m
- Storage Parameters and Syntax 3m
- Deployment Design and Requirements 2m
- Azure VMs Deployment 3m
- Azure Kubernetes Service Deployment 2m
- Module Summary 1m
- Overview 1m
- Certificate Provisioning 1m
- Certificate Demo Overview 1m
- Provisioning the Azure VM Certificate 5m
- Provisioning the AKS Certificate 2m
- Azure VM Deployment Overview 2m
- Deploying the Azure VM Infrastructure 4m
- Reviewing the Vault Deployment Script 5m
- Loading the Vault Configuration 4m
- Starting up the Vault Service 2m
- Azure Kubernetes Service Deployment Overview 1m
- Deploying the AKS Cluster 3m
- Creating the TLS Secret 3m
- Deploying the Consul Storage 2m
- Inspecting the Overrides File 4m
- Deploying Vault with Helm 3m
- Module Summary 1m
- Overview 1m
- Vault Encryption Keys 3m
- Seal Options 3m
- Vault Initialization Commands 1m
- Securing Key Shares 2m
- Unseal Vault Process and Commands 2m
- Initialization Demo Overview 1m
- Initializing Vault Server 5m
- Unsealing Vault Server 4m
- Globomantics Updates 1m
- Auto Unseal Overview 2m
- Auto Unseal Configuration and Migration 2m
- Auto Unseal Demo Overview 0m
- Updating the Vault Infrastructure 2m
- Updating the Vault Configuration 1m
- Migrating the Vault Seal 1m
- Managing Encryption Keys 3m
- Managing Root Tokens 2m
- Managing Keys and Tokens Demo Overview 0m
- Revoking and Creating a Root Token 4m
- Rotating the Encryption Keys 1m
- Module Summary 2m
- Overview 1m
- Vault Server Clustering 1m
- Vault Cluster Compute 2m
- Vault Cluster Communications 4m
- Client Request Handling 5m
- Globomantics Updates 1m
- Cluster Architecture Update 3m
- Vault Cluster Demo Overview 1m
- Reviewing the Vault Template 3m
- Deploying the Vault Cluster 3m
- Initializing and Validating the Vault Cluster 4m
- Vault Cluster Replication 3m
- Module Summary 1m
- Overview 1m
- Authentication Methods Review 3m
- Authentication Method Configuration 2m
- Working with Authentication Methods 2m
- Globomantics Requirements 1m
- Auth Methods Demo Overview 0m
- Enabling the Userpass Auth Method 4m
- Vault Policies Review 3m
- Working with Policies 2m
- Policies Demo Overview 1m
- Assigning the Admin Policy 3m
- Revoking the Root Token 3m
- Module Summary 1m
- Overview 1m
- Vault Secrets Engines Review 2m
- Key Value Engine 1m
- Transit Engine 2m
- Globomantics Requirements 1m
- Enabling Secrets Engines 2m
- Working with Secrets Engines 2m
- Secrets Engines Demo Overview 1m
- Enabling the Secrets Engines 3m
- Creating Policies for the Secrets Engines 4m
- Testing the Key Value Secrets Engine 2m
- Testing the Transit Secrets Engine 3m
- Module Summary 1m
- Overview 1m
- Monitoring Disambiguation 2m
- Vault Server Logging 2m
- Auditing on Vault 3m
- Audit Data Capture and Commands 3m
- Globomantics Requirements and Update 2m
- Audit Device Demo Overview 1m
- Deploying the Workbook and Extensions 7m
- Creating and Testing the Audit Devices 7m
- Hardening the System Level Components 3m
- Hardening the Network and Vault Components 2m
- Module Summary 1m
- Next Steps and Thanks! 1m
About the author
Ned is an IT professional with almost 20 years of experience in the field. He has been a helpdesk operator, systems administrator, cloud architect, and product manager. In his newest incarnation, he is the Founder of Ned in the Cloud LLC. As a one-man-tech-juggernaut, he develops courses for Pluralsight, runs two podcasts (Day Two Cloud and Buffer Overflow), and creates original content for technology vendors. Ned has been a Microsoft MVP since 2017 and holds a bunch of industry certifications t... more