Join David Swersky for an in-depth discussion in this video What you should know, part of Learning HashiCorp Vault.
- [Instructor] Here's what you'll need to follow along with this course. This is an intermediate level course. The core concepts include information security, secrets management, cryptography, role-based access control, authorization and authentication, and continuous integration and continuous delivery. The following knowledge and experience will be helpful but not required. This course uses Linux to demonstrate Vault concepts and usage. It will be helpful if you have some Linux experience.
The exercise files provide configuration for Vault and supporting tools as Docker containers. This will allow us to focus on Vault without getting distracted by setup of SSH servers, databases, and so forth. You don't need to understand how Docker works to follow along. You just need to have Docker installed on your computer. In a moment, I'll show you how to check to make sure Docker's installed and functioning on your computer. This course will cover the Vault API. I'll use Postman to demonstrate executed commands to the Vault API.
It will be helpful if you have a basic understanding of RESTful APIs. Vault makes extensive use of multiple cryptographic techniques to protect data. If you have some experience with crypto concepts such as keys and symmetric asymmetric encryption, this will feel familiar. If not, don't worry. I'll cover the basics to get you up to speed. It will be helpful if you have some knowledge of the InfoSec concepts of authentication and authorization. And I'll demonstrate a continuous integration use case with Jenkins.
So, a basic understanding of CI will be good to have. Now, I'll show you how to check to make sure that Docker is installed and functioning on your computer. In Windows, you can use the command window or PowerShell. I'm using iTerm2 on a Mac. Open that command window and execute this command. Docker, space, -v. You should see a version number displayed. Now, execute docker-compose -v. Once again, you should get a version number.
Finally, docker container ls. If you don't have any containers running on your machine, you should at least see these headers. If you don't have Docker installed or you do, yet you don't get these outputs from these commands, you can refer to our Docker course for installation. Watch and follow the Docker installation and setup videos for your platform. When you can execute these commands and get the output displayed here, you're ready to come back.
- What is Vault?
- Using the dev server
- Working with Vault secrets engines
- Adding policies to Vault
- Running and using Vault
- Configuring the database secrets engine
- Implementing Vault
- Integrating Jenkins with Vault
- Using the Vault API