Join David Swersky for an in-depth discussion in this video Policies and credentials with the database secrets engine, part of Learning HashiCorp Vault.
- [Instructor] Our next step is to upload policies…for the datareader and datawriter.…They're essentially the same,…they both grant access to the path in the database…secrets engine that generates the credentials.…Here's datareader.hcl, and datawriter.hcl.…We can upload them with vault policy write…datareader space datareader.hcl,…vault policy write datawriter datawriter.hcl.…
By the way, these are in the MariaDB folder…under the exercise files.…And now the roles are updated.…Rephrase, and now the policies are uploaded.…Now we can create a token…with the datareader policy,…vault token create dash policy equals datareader.…And we have a token.…Copy the token and login,…vault login, and paste in the token.…
Now we're logged in as the datareader.…Now we can generate credentials.…Vault read database slash creds slash datareader.…And now vault has generated a username and password…that we can use to login to the database.…The next step is to login to the SSH container,…which has the MySQL CLI installed.…That'll be SSH space root at localhost dash p 3000.…
- What is Vault?
- Using the dev server
- Working with Vault secrets engines
- Adding policies to Vault
- Running and using Vault
- Configuring the database secrets engine
- Implementing Vault
- Integrating Jenkins with Vault
- Using the Vault API
Skill Level Beginner
1. Introduction to Vault
2. Getting Started with Vault
3. Running and Using Vault
4. Implementing Vault
5. Using the Vault API
Next steps with Vault1m 23s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.