From the course: Learning HashiCorp Vault
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Initializing and unsealing a Vault server - Vault Tutorial
From the course: Learning HashiCorp Vault
Initializing and unsealing a Vault server
- [Instructor] Now let's try to see if we can get the Vault status, execute Vault status. If you see this error, it's because the environment variable that Vault needs to connect to the server isn't present. We can fix that, export vault_ADDR=http://0.0.0.0:8200. Let's try again, Vault status. We see that we've connected to the Vault server, but it's not yet initialized. The next step is to initialize the Vault. We do that with Vault operator init. This is a critical step that displays the unseal keys. Each unseal key is a shard of the master key. It's very important that these unseal keys be stored in a secure separate locations from each other. Now let's try to log in with the route token. We can copy that and execute Vault login, paste the route token, and attempt to log in. Once again we get an error, because the Vault is currently sealed. Our next step is to unseal the Vault. In order to do that we use the command Vault operator unseal. And now we need one of the five unseal…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
-
-
(Locked)
Running a Vault server2m 21s
-
(Locked)
Initializing and unsealing a Vault server2m 43s
-
(Locked)
Running the containers5m 18s
-
(Locked)
SSH secrets engine overview1m 38s
-
(Locked)
SSH secrets engine set up6m 44s
-
(Locked)
Database secrets engine overview2m 1s
-
(Locked)
Configuring the database secrets engine3m 23s
-
(Locked)
Policies and credentials with the database secrets engine5m 18s
-
(Locked)
-
-
-