HashiCorp Vault GCP Secrets Engine - Integration with packer
Vault is the secrets engine that can be used with any cloud to store the secrets and securely connect to the cloud API"s. In this tutorial, you will learn how to quickly configure vault and enable gcp secrets engine. As an example: you will see how packer uses vault to connect to GCP and create image.
Important links:
https://learn.hashicorp.com/tutorials/vault/getting-started-install?in=vault/getting-started
https://www.vaultproject.io/docs/secrets/gcp
https://medium.com/@marco.urrea/hashicorp-vault-gcp-secrets-engine-70813983e33a
Timelines:
------------------
00:00 Intro
00:39 Agenda
01:31 Vault Install
02:54 Starting vault as "DEV"
04:23 Setting the environment variables
05:57 Enable gcp dynamic engine
07:27 GCP Service account for vault to create tokens
09:32 Service account permissions
11:45 Enable API's
14:10 Configure the secrets engine with account credentials
14:23 Configure a roleset that generates OAuth2 access tokens
18:23 Integrating packer with vault
19:55 Moment of truth: Packer build!!
21:49 Access tokens vs service account keys
23:13 Conclusion
----------
PLEASE SUBSCRIBE ➡️https://bit.ly/36x6qQy ❤️
If you like my work considering buying me ☕https://bit.ly/3lumyqx
----------
PLAYLISTS:
- Associate Cloud Engineer Study Guide: https://bit.ly/37y1dYl
- Google Cloud Playlist: https://bit.ly/37uMZal
----------
- Questions? Thoughts? Disagreements? Tell us here in the comments.
----------
LETS CONNECT:
👍 Facebook: https://www.facebook.com/multicloudguy
📸 Instagram - https://instagram.com/multicloudguy
🐦 Twitter - https://twitter.com/multicloudguy
Видео HashiCorp Vault GCP Secrets Engine - Integration with packer канала Cloud Advocate
Important links:
https://learn.hashicorp.com/tutorials/vault/getting-started-install?in=vault/getting-started
https://www.vaultproject.io/docs/secrets/gcp
https://medium.com/@marco.urrea/hashicorp-vault-gcp-secrets-engine-70813983e33a
Timelines:
------------------
00:00 Intro
00:39 Agenda
01:31 Vault Install
02:54 Starting vault as "DEV"
04:23 Setting the environment variables
05:57 Enable gcp dynamic engine
07:27 GCP Service account for vault to create tokens
09:32 Service account permissions
11:45 Enable API's
14:10 Configure the secrets engine with account credentials
14:23 Configure a roleset that generates OAuth2 access tokens
18:23 Integrating packer with vault
19:55 Moment of truth: Packer build!!
21:49 Access tokens vs service account keys
23:13 Conclusion
----------
PLEASE SUBSCRIBE ➡️https://bit.ly/36x6qQy ❤️
If you like my work considering buying me ☕https://bit.ly/3lumyqx
----------
PLAYLISTS:
- Associate Cloud Engineer Study Guide: https://bit.ly/37y1dYl
- Google Cloud Playlist: https://bit.ly/37uMZal
----------
- Questions? Thoughts? Disagreements? Tell us here in the comments.
----------
LETS CONNECT:
👍 Facebook: https://www.facebook.com/multicloudguy
📸 Instagram - https://instagram.com/multicloudguy
🐦 Twitter - https://twitter.com/multicloudguy
Видео HashiCorp Vault GCP Secrets Engine - Integration with packer канала Cloud Advocate
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
AWS to GCP sans service account keys!! - Workload Identity FederationWhat cloud to choose #shortsGitLab CI and GitOps | Cloud AdvocateFree Associate Cloud Engineer Udemy course - By Dan Sullivan - Expired5 reasons why you should work at startup companies as a DevOps engineerAnalytical Dashboard using Data Studio and BigQuery - Stackdriver/cloud loggingBaseline GCP Services - GCP Associate ExamAnsible Dynamic Inventory using Google CloudPlatform Engineering at Enterprise ScaleWhat is Cloud Security?Spotted a Bug in Google Cloud Console UIFuture-Proof Your Career! 10 DevOps Trends to Watch 🚀🔒gcloud for Google Associate Cloud Engineer (Important!)DevOps Trends in 2022 - What Cloud?DevOps Certifications to boost your resume!Infrastructure as a Code and TWO favorite tools!📈 EPIC Way to Learn DevOpsLayoffs and LessonsDevOps Responsibilities you should knowLearn Google Cloud for FREE - Exclusive early access!!