Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Managing Secrets with Hashicorp Vault

Name: Managing Secrets with Hashicorp Vault
Rating: 4.3 (489 reviews)

Everything you need to get started with Hashicorp Vault

Created byChris Parent

Last updated 10/2018

English

What you'll learn

Gain an understanding of Vault terminology, concepts, and technical architecture.
Manage static secrets such as usernames and passwords through the CLI and APIs.
Generate dynamic and short lived secrets for use with databases and cloud service providers.
Use Hashicorp Vault to build out a PKI solution.
Configure Vault for High Availability and TLS.
Set up development environments to support Hashicorp Vault
Control access to Hashicorp Vault by defining Vault Policies.
Configure various secret backends such as Database, AWS, and PKI.
Configure various storage backends such as Consul, File, and others.

Course content

13 sections • 56 lectures • 5h 17m total length

Introduction and Lab Guide1:00
Welcome to my course on Managing Secrets with Hashicorp Vault! This course lays out several lectures for working with Vault and how you can use Vault to enable safer secret management.
The Lab Guide for this course is attached to this lecture as a PDF. Please be sure to download a copy of this PDF for your reference. The Lab Guide provides detailed exercises on deploying, configuring, and using Hashicorp Vault. Each lab in the guide has a video lecture associated with it.
The Lab Guide may be updated from time-to-time. Any updates to the lab guide will be communicated to you directly.
Version 2 of the Lab Guide is now aligned with Vault 0.9 and newer and includes all the new syntax and commands.
The video lectures have not been updated yet to reflect the changes in the lab guide.
Every lecture in this course that begins with "Lab" in the title corresponds to a lab in the Lab Guide itself.

Managing your first secret2:08
In this lecture I dive right in showing you how to manage your first secret in Vault. The labs that follow will show you how to run Vault server in development mode with little effort.
Lab Part 1 - Installing Vault4:25
In this lab you will download and install Hashicorp Vault.
Lab Part 2 - Development Mode4:25
In this video you will learn how to start Vault server in development mode. This is the quickest way to get started with using Vault.
Lab Part 3 - Configuring your Environment2:01
Lab Part 4 - Using the Command Line Interface1:57
Lab Part 5 - Creating your First Secret3:51
Lab Part 6 - Deleting a Secret1:01

Authentication8:33
Vault supports many different authentication methods. In this lecture and set of labs you will learn what an authentication backed is and how to use one. The labs will show you how you can authenticate Vault users against Github, LDAP, and other such providers.
Lab - User/Password Authentication12:28
Lab- Github Authentication9:16
Lab - LDAP Authentication Part 1 - LDAP Server4:41
In these series of LDAP Labs you will learn how to authenticate against Vault using an LDAP backend.
Lab - LDAP Authentication Part 2 - Install phpLDAPAdmin7:07
In these series of LDAP Labs you will learn how to authenticate against Vault using an LDAP backend.
Lab - LDAP Authentication Part 3 - Enable LDAP in Vault3:00
In these series of LDAP Labs you will learn how to authenticate against Vault using an LDAP backend.
Lab - LDAP Authentication Part 4 - Authorization through Policy3:48
In these series of LDAP Labs you will learn how to authenticate against Vault using an LDAP backend.
Lab - LDAP Authentication Part 5 - Logging in3:54
In these series of LDAP Labs you will learn how to authenticate against Vault using an LDAP backend.

Understanding Secret Backends11:57
Lab - KeyVault Secrets5:37
In this lab you will learn how to manage static secrets using the Key/Value secret backend.
Lab - Amazon Web Services Secret Backend18:15
Learn how to generate on-demand AWS credentials using the AWS secret backend.
Lab - MySQL Database Secret Backend19:30
Learn how to generate dynamic on-demand credentials for a MySQL database.
Lab - Transit Secret Backend27:02
In this lab you will use the Transit backend to perform encryption and hashing operations on static data.

Requirements

You should understand how to use your preferred OS shell, such as bash, powershell, or the command prompt in Windows
Any computer running Linux, OSX, or Windows

Description

Why Managing Secrets is so important ...

Everyone who works in IT these days is concerned with security. It's hard to go a day without reading about some sort of data leak or DDOS attack in the news affecting thousands if not millions of users. Having a solid defense-in-depth and risk management plan is key to protecting your organization's digital assets. In the past this has been the responsibility of executive management and security professionals, however these days in our brave new cloud computing world, everyone who works in and with the cloud has a far greater direct impact on releasing services that we are all responsible for taking a security-first approach.

Managing secrets is an integral part of protecting your organization and any digital assets, including on-premise and cloud native applications.

So what is Secrets Management?

First let's ask what may seem like an obvious question: What is a secret? A secret is really anything that you consider sensitive enough to protect from prying eyes, bad actors, or even incompetent ones. A more technical definition of a secret might be any credential, password, tokens, keys, or certificates used to protect data or access services used by an application or even a human.

So secrets management, then, is responsible for the governance of these secrets. Governance is a process that defines how secrets are created, protected, rotated, distributed, revoked, and destroyed. The governance process may also cover who can access what secrets and when.

While process is great on paper, at the end of the day you need tools to make the secrets management process real. Enter one fantastic tool: Hashicorp's Vault.

This course will teach you how to use Hashicorp Vault.

I have put together this easy to follow course on how to get anyone up to speed on using Hashicorp Vault as quickly as possible. You don't need to be a security professional or understand all the details behind encryption algorithms to learn Vault.

Vault is not just another password vault by the way. In this course you will learn the following:

1. Securely deploy Vault into Development and Production environments

2. Manage static secrets such as passwords

3. Generate and management dynamic secrets such as AWS access tokens or database credentials

4. How to bootstrap infrastructure and services without a human

... and many others ...

Who this course is for:

Developers and Administrators who want to incorporate a tested security solution into their applications or services without having to roll their own.
Security professionals who are looking for tools to implement policy and procedures.

Managing Secrets with Hashicorp Vault

What you'll learn

Explore related topics

Course content

Introduction to Managing Secrets1 lecture • 1min

Quick Intro to Hashicorp Vault3 lectures • 7min

Managing Your First Secret7 lectures • 20min

Deeper Dive on Vault Fundamentals4 lectures • 25min

Authentication in Vault8 lectures • 53min

Vault Tokens6 lectures • 31min

Access Authorization7 lectures • 33min

Secret Backends5 lectures • 1hr 22min

Auditing1 lecture • 3min

Deploying Vault into Production1 lecture • 10min

Requirements

Description

Who this course is for: