HashiCorp Vault is well known for secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing.
It also handles leasing, key revocation, key rolling, and auditing. Vault presents a unified API to access multiple backends: HSMs, AWS IAM,
SQL databases, raw key/value, and more. But what else is it good for?
This talk is about exploring lesser-known features of Vault besides Secret Storage, namely Encryption-as-a-service, Dynamic Secrets, Cubbyhole secret engine, PKI, etc
Outline
Overview of Vault Features & the Vault Architecture.
Introduction to Vault terminology.
Understanding various Vault Secret Engines
Exploring the Cubbyhole Secret engine.
Overview of Encryption-as-a-service feature.
Rotating Database credentials dynamically.
Vault for other production use cases.
Speaker bio
Roshan is a tech enthusiast and StackOverflow community contributor for the past few years. Currenlty he’s working as an Operations engineer at Endurance international group. He’s also an AWS certified professional and a multi-cloud expert. His area of interest also includes containerization, docker security, and infra automation.
Slides
https://docs.google.com/presentation/d/1eaPTM-LfrlI8txsOgFUaJerks1DwHcLIAvNPM5oTBwQ/edit?usp=sharing
{{ gettext('Login to leave a comment') }}
{{ gettext('Post a comment…') }}{{ errorMsg }}
{{ gettext('No comments posted yet') }}