Erik Rygg - Manage SSH With HashiCorp Vault
DevOpsDays Rockies 2018 - (Denver, Colorado)
GE Digital has recently partnered with HashiCorp to provide Vault as a service for internal services for the Predix environment. We are working together to provide a full-featured secrets management solution for all the internal PaaS and IaaS services as well as working with the InfoSec team to secure the internals of the premier IoT platform, Predix. Vault is the solution GE has chosen due to it’s pluggable secrets and authentication backends.
The SSH one time password capability and the SSH key signing capabilities of Vault are two of the main use cases that have been adopted and this talk will discuss how that is accomplished. It will not necessarily go into the architecture of Vault, but more about building the policies, roles, and credentials associated with these two use cases. Additionally, a demonstration will be shown to provide context around how Vault and SSH can be integrated.
Видео Erik Rygg - Manage SSH With HashiCorp Vault канала DevOpsDays Rockies
GE Digital has recently partnered with HashiCorp to provide Vault as a service for internal services for the Predix environment. We are working together to provide a full-featured secrets management solution for all the internal PaaS and IaaS services as well as working with the InfoSec team to secure the internals of the premier IoT platform, Predix. Vault is the solution GE has chosen due to it’s pluggable secrets and authentication backends.
The SSH one time password capability and the SSH key signing capabilities of Vault are two of the main use cases that have been adopted and this talk will discuss how that is accomplished. It will not necessarily go into the architecture of Vault, but more about building the policies, roles, and credentials associated with these two use cases. Additionally, a demonstration will be shown to provide context around how Vault and SSH can be integrated.
Видео Erik Rygg - Manage SSH With HashiCorp Vault канала DevOpsDays Rockies
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Leigh Capili - Engineering with a Growth MindsetKris Nova - Moving an enterprise monolith to KubernetesMeera Subbarao - Know Your Enemy, And Yourself: Demystifying Threat ModelingChristine Rohacz - Scaling CI/CDCurtis Yanko - The Difference Between DevOps and Everything ElseRizchel Dayao - Why Kubernetes: Finding the Best Solution for YouPete Cheslock - Pick any Three: Good, Fast, and Safe. DevOps from Scratch.Ignite Presentations - DevOpsDays Rockies - 4/18/2018 - (Denver, Colorado)Ignite Presentations - DevOpsDays Rockies - 4/17/2018 - (Denver, Colorado)Beau Christensen - Going Multi-Master: Making Practical Decisions When Building Distributed SystemsAdo Kukic - A Token Walks Into A SPA...Matthew Boeckman - Useful Flakes: The Value of Common ToolsCorey Quinn - Terrible Ideas in GitMichael Stahnke - Is Devops Success a Potemkin villageTom McLaughlin - Exploring the myths, fears, and preparing for crash landing when going serverlessJames Bowes - Higher-Order Deployments: Reducing Boilerplate w/ KubernetesAJ Davis - No jobs for humans: How to survive and thrive the transition to the all robot workforce.