Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Securing IaC Workflows

Kerim Satirli
PRO
June 01, 2022
Technology
0
190

Securing IaC Workflows

In this demo, I show how to secure Infrastructure as Code (IaC) workflows using HashiCorp Cloud offerings HCP Vault and HCP Packer, with a bit of Terraform Cloud best-practices sprinkled in for operational happiness.

---

Companion Code: https://github.com/ksatirli/securing-iac-workflows

Kerim Satirli
PRO

June 01, 2022
Tweet

More Decks by Kerim Satirli

See All by Kerim Satirli
Adding Compute to your Conference Badge
ksatirli
PRO
0
14
Orchestration at the Edge with Nomad
ksatirli
PRO
0
20
Heartbeats and Healthchecks
ksatirli
PRO
0
40
Security at Scale
ksatirli
PRO
0
58
Gaming at Scale
ksatirli
PRO
0
36
Industrial Mining at Scale
ksatirli
PRO
0
48
Increasing the Security Posture of your Pipelines
ksatirli
PRO
0
84
How to Secure Edge Compute
ksatirli
PRO
0
57
Patterns that Protect
ksatirli
PRO
0
33

Other Decks in Technology

See All in Technology
web-application-security
matsuihidetoshi
1
210
Documentação de Produtos: Artefatos essenciais na prática
rigolon
1
190
Secrets of a PowerShell "Guru"
guyrleech
1
100
AWSに詳しくない人でも始められるコスト最適化ガイド
yuhta28
2
410
Building a RAG-powered AI chat app with Python and VS Code
pamelafox
0
170
リテール金融(キャッシュレス・ネット銀行・ネット証券)の競争環境と経済圏
8maki
0
1.7k
Python と Snowflake はズッ友だょ!~ Snowflake の Python 関連機能をふりかえる ~
__allllllllez__
2
150
How to do well in consulting–Balkan Ruby 2024
irinanazarova
0
170
社内アプリで Cloudflare D1を プロダクト運用してみた体験談(Tokyo)
haochenx
0
130
Android Target SDK 35 (Android 15) 対応の概要
akkie76
0
180
家族アルバム みてねにおけるGrafana活用術 / Grafana Meetup Japan Vol.1 LT
isaoshimizu
1
1.1k
競技としてのKaggle、役に立つKaggle
yu4u
7
2.5k

Featured

See All Featured
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
20
1.8k
What’s in a name? Adding method to the madness
productmarketing
PRO
17
2.7k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
21
1.6k
Web development in the modern age
philhawksworth
203
10k
Principles of Awesome APIs and How to Build Them.
keavy
121
16k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
21
1.9k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
15
1.6k
How STYLIGHT went responsive
nonsquared
92
4.8k
Adopting Sorbet at Scale
ufuk
69
8.6k
GraphQLとの向き合い方2022年版
quramy
33
12k
Learning to Love Humans: Emotional Interface Design
aarron
267
39k
Build The Right Thing And Hit Your Dates
maggiecrowley
25
2k

Transcript

  1. Secure Workflows with HCP Vault and Packer Kerim Satirli Sr.

    Developer Advocate HashiCorp

  2. Sr. Developer Advocate at HashiCorp he / him @ksatirli Kerim

    Satirli

  3. Cloud Infrastructure Automation Consistent workflows to provision, secure, connect, and

    run any infrastructure for any application.

  4. Workspaces vault-deployment Workspace to deploy and manage lifecycle of an

    HCP Vault Clusters vault-config Workspace to configure an (HCP) Vault Cluster for use with AWS packer Packer Template for AWS EC2 Instances packer-registry Workspace to deploy EC2 Instances using HCP Packer Registry workspaces Terraform Cloud Workspace to manage the lifecycle of Terraform Cloud Workspaces

  5. Workspace Isolation vault-deployment Workspace to deploy and manage lifecycle of

    an HCP Vault Clusters vault-config Workspace to configure an (HCP) Vault Cluster for use with AWS packer Packer Template for AWS EC2 Instances packer-registry Workspace to deploy EC2 Instances using HCP Packer Registry workspaces Terraform Cloud Workspace to manage the lifecycle of Terraform Cloud Workspaces

  6. Terraform Cloud https://app.terraform.io/app/a-demo-organization/

  7. HashiCorp Cloud Platform https://portal.cloud.hashicorp.com/

  8. Useful Links ▪ slides: speakerdeck.com/ksatirli/securing-iac-workflows ▪ code: github.com/ksatirli/securing-iac-workflows ▪ HCP

    sign-up: hashi.co/hcp-signup-june22

  9. Thank You [email protected]