HashiCorp Vault GCP Secrets Engine - Integration with packer
Vault is the secrets engine that can be used with any cloud to store the secrets and securely connect to the cloud API"s. In this tutorial, you will learn how to quickly configure vault and enable gcp secrets engine. As an example: you will see how packer uses vault to connect to GCP and create image.
Important links:
https://learn.hashicorp.com/tutorials/vault/getting-started-install?in=vault/getting-started
https://www.vaultproject.io/docs/secrets/gcp
https://medium.com/@marco.urrea/hashicorp-vault-gcp-secrets-engine-70813983e33a
Timelines:
------------------
00:00 Intro
00:39 Agenda
01:31 Vault Install
02:54 Starting vault as "DEV"
04:23 Setting the environment variables
05:57 Enable gcp dynamic engine
07:27 GCP Service account for vault to create tokens
09:32 Service account permissions
11:45 Enable API's
14:10 Configure the secrets engine with account credentials
14:23 Configure a roleset that generates OAuth2 access tokens
18:23 Integrating packer with vault
19:55 Moment of truth: Packer build!!
21:49 Access tokens vs service account keys
23:13 Conclusion
----------
PLEASE SUBSCRIBE ➡️https://bit.ly/36x6qQy ❤️
If you like my work considering buying me ☕https://bit.ly/3lumyqx
----------
PLAYLISTS:
- Associate Cloud Engineer Study Guide: https://bit.ly/37y1dYl
- Google Cloud Playlist: https://bit.ly/37uMZal
----------
- Questions? Thoughts? Disagreements? Tell us here in the comments.
----------
LETS CONNECT:
👍 Facebook: https://www.facebook.com/multicloudguy
📸 Instagram - https://instagram.com/multicloudguy
🐦 Twitter - https://twitter.com/multicloudguy
Видео HashiCorp Vault GCP Secrets Engine - Integration with packer канала Cloud Advocate
Important links:
https://learn.hashicorp.com/tutorials/vault/getting-started-install?in=vault/getting-started
https://www.vaultproject.io/docs/secrets/gcp
https://medium.com/@marco.urrea/hashicorp-vault-gcp-secrets-engine-70813983e33a
Timelines:
------------------
00:00 Intro
00:39 Agenda
01:31 Vault Install
02:54 Starting vault as "DEV"
04:23 Setting the environment variables
05:57 Enable gcp dynamic engine
07:27 GCP Service account for vault to create tokens
09:32 Service account permissions
11:45 Enable API's
14:10 Configure the secrets engine with account credentials
14:23 Configure a roleset that generates OAuth2 access tokens
18:23 Integrating packer with vault
19:55 Moment of truth: Packer build!!
21:49 Access tokens vs service account keys
23:13 Conclusion
----------
PLEASE SUBSCRIBE ➡️https://bit.ly/36x6qQy ❤️
If you like my work considering buying me ☕https://bit.ly/3lumyqx
----------
PLAYLISTS:
- Associate Cloud Engineer Study Guide: https://bit.ly/37y1dYl
- Google Cloud Playlist: https://bit.ly/37uMZal
----------
- Questions? Thoughts? Disagreements? Tell us here in the comments.
----------
LETS CONNECT:
👍 Facebook: https://www.facebook.com/multicloudguy
📸 Instagram - https://instagram.com/multicloudguy
🐦 Twitter - https://twitter.com/multicloudguy
Видео HashiCorp Vault GCP Secrets Engine - Integration with packer канала Cloud Advocate
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
AWS to GCP sans service account keys!! - Workload Identity Federation
What cloud to choose #shorts
GitLab CI and GitOps | Cloud Advocate
Free Associate Cloud Engineer Udemy course - By Dan Sullivan - Expired
5 reasons why you should work at startup companies as a DevOps engineer
Analytical Dashboard using Data Studio and BigQuery - Stackdriver/cloud logging
Baseline GCP Services - GCP Associate Exam
Ansible Dynamic Inventory using Google Cloud
Platform Engineering at Enterprise Scale
What is Cloud Security?
Spotted a Bug in Google Cloud Console UI
Future-Proof Your Career! 10 DevOps Trends to Watch 🚀🔒
gcloud for Google Associate Cloud Engineer (Important!)
DevOps Trends in 2022 - What Cloud?
DevOps Certifications to boost your resume!
Infrastructure as a Code and TWO favorite tools!
📈 EPIC Way to Learn DevOps
Layoffs and Lessons
DevOps Responsibilities you should know
Learn Google Cloud for FREE - Exclusive early access!!