HashiCorp Vault

By Ermin

HashiCorp Vault is a tool used to store, process, and manage any kind of credentials. It replaces traditional databases for user credentials.

18 hours
  • 59 Lessons
  • 9 Hands-On Labs

About the course

HashiCorp Vault is a tool that is used to store, process, and generally manage any kind of credentials. It removes the need for traditional databases that are used to store user credentials. Even though it provides storage for credentials, it also provides many more features. You are able to create and revoke secrets, grant time-based access, IP-based access, and much more.

As part of this course, we will get acquainted with HashiCorp Vault and its features. We will see and examine the life cycle of a secret: How is it created? Where does it exist? Of what type is it? For AWS, GCP, Azure? HashiCorp Vault has specific predefined types of secrets that work well with existing cloud service providers.

Vault provides you with the ability to clearly and precisely define who can access which secret and what sort of access they will have. Do you want the user to only be able to read the credentials, or can the user update them? All of these actions can be logged, and you will be able to see who accessed what and when at all times.

The course will begin with a light introduction to HashiCorp Vault, taking a look at the high-level architecture and then progressing slowly over to basic command-level interaction. Once we learn how to install, configure, and interact with the tool, we will move on to performing specific tasks and reviewing real world scenarios.

It would be impossible to demonstrate all the possible scenarios, but the most common ones will be included such as configuring Vault to work with SSH and provide access, setting up Vault to work with GCP and create GCP-type secrets, and setting up Vault to work with MySQL databases. There will also be an opportunity to analyze how Vault can be easily integrated into third-party custom applications for which there are no specific types of secrets.

  • Chapter 1 6 Lessons Course Introduction 25:54

    About the Course

    3:43

    About the Author

    1:04

    How to Get Help

    6:19

    Prerequisites

    3:58

    Text Editor VIM Basics (Optional)

    6:06

    Job Market (Optional)

    4:44
  • Chapter 2 3 Lessons General Overview 19:40

    What Is HashiCorp Vault?

    9:35

    What Problems Does HashiCorp Vault Solve and Where Is It Used?

    4:07

    Overview of High Level Architecture

    5:58
  • Chapter 3 8 Lessons Install HashiCorp Vault and Configure HashiCorp Vault Shell 53:16

    Section Overview

    1:34

    Installing HashiCorp Vault on Linux Part 1

    3:27

    Installing HashiCorp Vault on Linux Part 2

    9:01

    Installing HashiCorp Vault on Linux Part 3

    6:43

    Installing HashiCorp Vault on Linux Part 4

    14:22

    Installing HashiCorp Vault on Windows (This will be demonstrated but not used)

    15:53

    Section Summary

    2:16

    Install and Configure HashiCorp Vault on Linux

    0:00 Hands-On Lab
  • Chapter 4 1 Lesson HashiCorp Vault Web-Based User Interface 11:31

    Overview of HashiCorp Vault Web UI

    11:31
  • Chapter 5 10 Lessons HashiCorp Vault Authentication, Secrets, and Tokens 1:06:38

    Section Overview

    2:02

    Overview and Usage of HashiCorp Vault Secrets Engine

    8:33

    Write, Get, and Delete a Secret

    7:27

    Overview and Usage of Dynamic Secrets GCP - Part 1

    10:40

    Overview and Usage of Dynamic Secrets GCP - Part 2

    13:12

    Authentication and Tokens

    5:05

    Username and Password Authentication

    6:30

    GitHub Authentication

    11:26

    Section Summary

    1:43

    Configure Authentication with HashiCorp Vault

    0:00 Hands-On Lab
  • Chapter 6 5 Lessons HashiCorp Vault Policies 37:53

    Overview of Policy Formats

    7:42

    Writing and Testing Sentinel Policies

    11:47

    Writing and Testing ACL Policies Example 1

    10:40

    Writing and Testing ACL Policies Example 2

    7:44

    Write and Test a HashiCorp Vault Policy

    0:00 Hands-On Lab
  • Chapter 7 3 Lessons Overview of HashiCorp Vault Application Programming Interface - API 28:46

    Using HashiCorp Vault REST API Part 1

    14:28

    Using HashiCorp Vault REST API Part 2

    14:18

    Configure and Test HashiCorp Vault Rest API

    0:00 Hands-On Lab
  • Chapter 8 4 Lessons Secure Shell Authentication with HashiCorp Vault 24:23

    Authenticate to SSH via HashiCorp Vault Part 1

    7:02

    Authenticate to SSH via HashiCorp Vault Part 2

    11:34

    Authenticate to SSH via HashiCorp Vault Part 3

    5:47

    Configure SSH for HashiCorp Vault Authentication

    0:00 Hands-On Lab
  • Chapter 9 4 Lessons Creating Logs and Managing Logging 32:56

    Configure and Test Logging for HashiCorp Vault Part 1 - Server Logs

    10:02

    Configure and Test Logging for HashiCorp Vault Part 2 - File Logs

    10:33

    Configure and Test Logging for HashiCorp Vault Part 3 - rsync

    12:21

    Implement a Logging Solution for HashiCorp Vault

    0:00 Hands-On Lab
  • Chapter 10 4 Lessons Authenticate a User to a Website via Vault 32:32

    HashiCorp Vault Website User Authentication Part 1

    12:44

    HashiCorp Vault Website User Authentication Part 2

    6:50

    HashiCorp Vault Website User Authentication Part 3

    12:58

    Integrate HashiCorp Vault Authentication to a Website

    0:00 Hands-On Lab
  • Chapter 11 4 Lessons Authenticate to Application API via Vault 32:31

    Authenticate to Application REST API via HashiCorp Vault Part 1

    13:49

    Authenticate to Application REST API via HashiCorp Vault Part 2

    7:32

    Authenticate to Application REST API via HashiCorp Vault Part 3

    11:10

    Implement HashiCorp Vault API Authentication

    0:00 Hands-On Lab
  • Chapter 12 4 Lessons Database Authentication via HashiCorp Vault 27:48

    Configure HashiCorp Vault Authentication to a MariaDB Part 1

    9:16

    Configure HashiCorp Vault Authentication to a MariaDB Part 2

    8:31

    Configure HashiCorp Vault Authentication to a MariaDB Part 3

    10:01

    Implement HashiCorp Vault authentication to MariaDB

    0:00 Hands-On Lab
  • Chapter 13 3 Lessons Authenticate an IAM User via Vault 18:23

    IAM User Authentication with HashiCorp Vault Part 1

    6:30

    IAM User Authentication with HashiCorp Vault Part 2

    4:29

    IAM User Authentication with HashiCorp Vault Part 3

    7:24

What are Hands-on Labs

What's the difference between theoretical knowledge and real skills? Practical real-world experience. That's where Hands-on Labs come in! Hands-on Labs are guided, interactive experiences that help you learn and practice real-world scenarios in real cloud environments. Hands-on Labs are seamlessly integrated in courses, so you can learn by doing.

Get Started
Who’s going to be learning?
Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!