From the course: Learning HashiCorp Vault

Unlock the full course today

Join today to access over 22,600 courses taught by industry experts or purchase this course individually.

Initializing and unsealing a Vault server

Initializing and unsealing a Vault server - Vault Tutorial

From the course: Learning HashiCorp Vault

Start my 1-month free trial

Initializing and unsealing a Vault server

- [Instructor] Now let's try to see if we can get the Vault status, execute Vault status. If you see this error, it's because the environment variable that Vault needs to connect to the server isn't present. We can fix that, export vault_ADDR=http://0.0.0.0:8200. Let's try again, Vault status. We see that we've connected to the Vault server, but it's not yet initialized. The next step is to initialize the Vault. We do that with Vault operator init. This is a critical step that displays the unseal keys. Each unseal key is a shard of the master key. It's very important that these unseal keys be stored in a secure separate locations from each other. Now let's try to log in with the route token. We can copy that and execute Vault login, paste the route token, and attempt to log in. Once again we get an error, because the Vault is currently sealed. Our next step is to unseal the Vault. In order to do that we use the command Vault operator unseal. And now we need one of the five unseal…

Contents