Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Secrets management with Vault
Search
Boris Quiroz
December 20, 2017
Technology
0
50
Secrets management with Vault
https://www.meetup.com/Santiago-HashiCorp-User-Group/events/245738064/
Boris Quiroz
December 20, 2017
Tweet
Share
More Decks by Boris Quiroz
See All by Boris Quiroz
Docker Images Best Practices
boris
0
49
Software Freedom Day 2015
boris
0
39
Code Driven Infrastructure
boris
0
58
hola mundo
boris
0
53
DevOps Tools: Chef + Vagrant
boris
0
220
Kitchen.CI
boris
0
110
Introducción a HSTS
boris
0
50
Hands-on Lab
boris
0
68
Tech, Method & Philosophy for the cloud
boris
0
47
Other Decks in Technology
See All in Technology
Google Cloud Next '24でブログを10本書いた方法と勉強会を沸かせた方法
yasumuusan
0
330
LangSmith入門―トレース/評価/プロンプト管理などを担うLLMアプリ開発プラットフォーム
os1ma
5
700
ゼロから始めるVue.jsコミュニティ貢献 / first-vuejs-community-contribution-link-and-motivation
lmi
1
150
【NW X Security JAWS#3】L3-4:AWS環境のIPv6移行に向けて知っておきたいこと
shotashiratori
1
620
Python と Snowflake はズッ友だょ!~ Snowflake の Python 関連機能をふりかえる ~
__allllllllez__
2
140
MapLibreとAmazon Location Service
dayjournal
1
180
Gitlab本から学んだこと - そーだいなるプレイバック / gitlab-book
soudai
7
1.3k
チームでロジカルシンキングに改めて向き合っている話 〜学習環境と実践⽅法〜
sansantech
PRO
3
3.2k
エンジニア候補者向け資料2024.04.24.pdf
macloud
0
3.3k
今年のRubyKaigiはProfiler Year🤘
osyoyu
0
360
リテール金融(キャッシュレス・ネット銀行・ネット証券)の競争環境と経済圏
8maki
0
1.6k
アクセス制御にまつわる改善 / Improving access control
itkq
0
590
Featured
See All Featured
How GitHub Uses GitHub to Build GitHub
holman
468
290k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
242
1.2M
YesSQL, Process and Tooling at Scale
rocio
165
13k
Adopting Sorbet at Scale
ufuk
69
8.6k
Designing on Purpose - Digital PM Summit 2013
jponch
111
6.5k
How STYLIGHT went responsive
nonsquared
92
4.8k
Product Roadmaps are Hard
iamctodd
45
9.7k
Bootstrapping a Software Product
garrettdimon
PRO
302
110k
KATA
mclloyd
16
12k
Building an army of robots
kneath
300
41k
jQuery: Nuts, Bolts and Bling
dougneiner
59
7.2k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
34
8.9k
Transcript
Vault Boris Quiroz Q. -
[email protected]
- github.com/boris
¿Qué es Vault?
Una herramienta para acceder a secretos de forma segura.
• Almacenamiento seguro • Secretos dinámicos • Encriptación de data
• Leasing and Renewal • Revocación
Conceptos
• Seal/Unseal • Tokens • Policy • Secret Backend
Políticas
Proporcionan una manera declarativa de delegar acceso a ciertas rutas
y operaciones en Vault.
path “secret/*” { capabilities = [ “write”, “list” ] }
path “secret/very-secret/*” { capabilities = [ “deny” ] }
path “secret/not-secret/*” { capabilities = [ “create”, “delete”, “list”, “read”,
“update” ] }
AWS
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "iam:*",
"Resource": "*" } ] }
Demo https://git.io/scl-vault-meetup