Go beyond the basics and learn how to use some of the Advanced features of HashiCorp Vault.
What you'll learn Advanced topics with HashiCorp Vault How to turn Vault into an Intermediate Certificate Authority Securing Vault and the Consul storage backend Increase the security of data in Vault using Sentinel policies How to extend Vault to other environments and protect against disaster recovery How to offload administrative burden by using Vault Namespaces Integrating Vault with Amazon Web Services (AWS)
Requirements Basic understanding of HashiCorp Vault Students preferably have experience with deploying and running Vault
Description The HashiCorp Vault Advanced course will familiarize students with more advanced topics of HashiCorp Vault with both lectures and lab demonstrations. Go beyond just "getting started" and explore the real power of using Vault in your environment. The course will include up-to-date topics such as Vault Replication, the PKI secrets engine, Consul ACLs for Vault, HashiCorp Sentinel for Vault, Namespaces, and other topics that are frequently seen in organizations using Vault today. Recently recorded, all the information is new and up to date.If you're looking for a course to teach you how to deploy and manage advanced features in a Vault environment, you're in the right place. About the InstructorYour instructor for this course, Bryan Krausen, is highly-regarded as a HashiCorp expert. Bryan has been working with HashiCorp Vault for over 5 years ago and has deployed Vault for many large Enterprise customers. He has taught over 20,000 students, including training some of the largest companies in the US. He has several courses on HashiCorp Vault and has co-authored the book Running HashiCorp Vault in Production. Bryan holds multiple Vault certifications, including one of the first to pass the HashiCorp Certified: Vault Associate certification while it was in the ALPHA stage and the only person in the world to hold the partner cert HashiCorp Vault Expert.
Overview
Section 1: Introduction
Lecture 1 Course Introduction
Section 2: HashiCorp Vault Replication
Lecture 2 Section Overview
Lecture 3 Setting the Stage
Lecture 4 Replication Architecture
Lecture 5 Network Ports for Replication
Lecture 6 Vault Secondary Token
Lecture 7 How Vault Replication Works
Lecture 8 Configuring Vault Replication
Lecture 9 Monitoring Replication
Lecture 10 Vault Replication Demo Preview
Lecture 11 Lab Environment & Demo
Section 3: Vault PKI Secrets Engine
Lecture 12 Section Overview
Lecture 13 Identifying the Problem with Certs
Lecture 14 Intro to the PKI Secrets Engine
Lecture 15 PKI Secrets Engine Examples
Lecture 16 Configuring the PKI Secrets Engine
Lecture 17 Vault Policies for PKI Secrets Engine
Lecture 18 PKI Secrets Engine Demo Preview
Lecture 19 Lab Environment and Demo
Section 4: Consul ACLs for Vault
Lecture 20 Section Overview
Lecture 21 What are Consul ACLs?
Lecture 22 Why does Vault need Consul ACLs?
Lecture 23 Steps Required for Consul ACL deployment
Lecture 24 Consul ACL Policies for Vault Deployment
Lecture 25 Defining Consul ACL Policies
Lecture 26 Updating Configurations with ACL Token
Lecture 27 Things to Keep in Mind
Lecture 28 Consul ACLs Lab Demo Preview
Lecture 29 Lab Environment and Demo
Section 5: HashiCorp Sentinel for Vault
Lecture 30 Section Overview
Lecture 31 What is Sentinel?
Lecture 32 Vault Policy Evaluation
Lecture 33 Sentinel Examples
Lecture 34 Sentinel Lab Preview
Lecture 35 Sentinel Lab Environment and Demo
Section 6: HashiCorp Vault Namespaces
Lecture 36 Section Overview
Lecture 37 What are Namespaces?
Lecture 38 Using Namespaces for Administrative Delegation
Lecture 39 Namespaces Commands
Lecture 40 Namespaces Lab Preview
Lecture 41 Namespaces Lab Environment and Demo
Section 7: Vault Security Hardening
Lecture 42 Section Overview
Lecture 43 Security Hardening Introduction
Lecture 44 General Security Recommendations
Lecture 45 Operating System Recommendations
Lecture 46 Vault Security Recommendations
Section 8: Understanding Vault Auto Unseal
Lecture 47 What is Vault Auto Unseal?
Lecture 48 Vault Auto Unseal Supported Mechanisms
Lecture 49 Auto Unseal Design Considerations
Lecture 50 Configuring Auto Unseal
Lecture 51 Transit Auto Unseal
Lecture 52 Vault Auto Unseal using Amazon KMS
Section 9: Course Completion
Lecture 53 Thanks for Watching!
Section 10: Bonus Section
Lecture 54 Bonus Section
HashiCorp Vault administrators,Cloud Engineers integrating Vault in Cloud or On-Premises Environments,Vault administrators looking to get more out of their HashiCorp investments