In this video, explore the challenge of securely distributing access keys to machines and people.
- [Instructor] Vault credentials-based authentication,…such as LDAP and GitHub, return tokens.…The tokens are in a sense keys to Vault.…This presents a challenge.…The tokens themselves become secrets.…Those tokens can become a vulnerability…if they're stolen by interception or carelessness.…How do we protect the keys that protect the secrets?…We can't lock them in the Vault.…That will be like protecting your house key…by locking it inside your house.…Sure the key is safe, but you're sleeping outside tonight.…The keys used to access Vault must be protected.…
This is especially true for keys delivered by automation…to applications and systems.…HashiCorp refers to the challenge…of securely delivering keys to a deployed application…as secure introduction.…How do we securely introduce an application…to our environment without putting secrets at risk?…There is no perfect totally secure way…to deliver secrets to an application.…However, there are ways to make it more difficult…to steal or intercept tokens,…thus mitigating the security risks…
- What is Vault?
- Using the dev server
- Working with Vault secrets engines
- Adding policies to Vault
- Running and using Vault
- Configuring the database secrets engine
- Implementing Vault
- Integrating Jenkins with Vault
- Using the Vault API
Skill Level Beginner
1. Introduction to Vault
2. Getting Started with Vault
3. Running and Using Vault
4. Implementing Vault
5. Using the Vault API
Next steps with Vault1m 23s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.