Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Securing IaC Workflows

Avatar for Kerim Satirli Kerim Satirli
PRO
June 01, 2022
Resources
Technology
0
250

Securing IaC Workflows

In this demo, I show how to secure Infrastructure as Code (IaC) workflows using HashiCorp Cloud offerings HCP Vault and HCP Packer, with a bit of Terraform Cloud best-practices sprinkled in for operational happiness.

This demo was given at a HashiCorp webinar in June 2022
Avatar for Kerim Satirli

Kerim Satirli
PRO

June 01, 2022
Tweet

Resources

companion code

https://github.com/ksatirli/securing-iac-workflows

More Decks by Kerim Satirli

See All by Kerim Satirli
Fireside Chat with Armon Dadgar
Avatar for Kerim Satirli ksatirli
PRO
0
5
Terraform Associate (003) Exam Preparation
Avatar for Kerim Satirli ksatirli
PRO
0
3
Controlling Robots like NASA
Avatar for Kerim Satirli ksatirli
PRO
0
1
Building Multi-Account Apps with Terraform Stacks
Avatar for Kerim Satirli ksatirli
PRO
0
3
AI and ML with HashiCorp Nomad
Avatar for Kerim Satirli ksatirli
PRO
0
3
The Building Blocks of Infrastructure Lifecycle Management
Avatar for Kerim Satirli ksatirli
PRO
0
3
Learning from Firefighters
Avatar for Kerim Satirli ksatirli
PRO
0
200
Deploying at Scale with HashiCorp Terraform
Avatar for Kerim Satirli ksatirli
PRO
0
51
Lessons from building an Internal Platform
Avatar for Kerim Satirli ksatirli
PRO
0
110

Other Decks in Technology

See All in Technology
MySQL5.6から8.4へ 戦いの記録
Avatar for Koji Yoshida kyoshidaxx
1
230
TechLION vol.41~MySQLユーザ会のほうから来ました / techlion41_mysql
Avatar for sakaik sakaik
0
180
BigQuery Remote FunctionでLooker Studioをインタラクティブ化
Avatar for CUEBiC Inc. cuebic9bic
3
300
Lambda Web Adapterについて自分なりに理解してみた
Avatar for Makky12 smt7174
3
110
Navigation3でViewModelにデータを渡す方法
Avatar for mikan mikanichinose
0
220
Prox Industries株式会社 会社紹介資料
Avatar for Prox proxindustries
0
300
Snowflake Summit 2025全体振り返り / Snowflake Summit 2025 Overall Review
Avatar for k.muguruma mtpooh
2
400
HiMoR: Monocular Deformable Gaussian Reconstruction with Hierarchical Motion Representation
Avatar for Spatial AI Network spatial_ai_network
0
110
Кто отправит outbox? Валентин Удальцов, автор канала Пых
Avatar for Lamoda Tech lamodatech
0
340
AWS CDK 実践的アプローチ N選 / aws-cdk-practical-approaches
Avatar for k.goto gotok365
6
750
5min GuardDuty Extended Threat Detection EKS
Avatar for takakuni takakuni
0
150
「Chatwork」の認証基盤の移行とログ活用によるプロダクト改善
Avatar for kubell kubell_hr
1
170

Featured

See All Featured
XXLCSS - How to scale CSS and keep your sanity
Avatar for Zaharenia Atzitzikaki sugarenia
248
1.3M
Balancing Empowerment & Direction
Avatar for Lara Hogan lara
1
370
Automating Front-end Workflow
Avatar for Addy Osmani addyosmani
1370
200k
[RailsConf 2023 Opening Keynote] The Magic of Rails
Avatar for Eileen M. Uchitelle eileencodes
29
9.5k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
Avatar for Eileen M. Uchitelle eileencodes
26
2.9k
Navigating Team Friction
Avatar for Lara Hogan lara
187
15k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
Avatar for Kevin Liebholz kevinliebholz
34
5.9k
Rails Girls Zürich Keynote
Avatar for Gregor Martynus gr2m
94
14k
Building Adaptive Systems
Avatar for Chris Keathley keathley
43
2.6k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
Avatar for Aki / @LoveIdahoBurger aki_iinuma
124
52k
Building a Modern Day 
E-commerce SEO Strategy
Avatar for Aleyda Solis aleyda
42
7.3k
Save Time (by Creating Custom Rails Generators)
Avatar for Garrett Dimon garrettdimon
PRO
31
1.2k

Transcript

  1. Secure Workflows with HCP Vault and Packer Kerim Satirli Sr.

    Developer Advocate HashiCorp

  2. Sr. Developer Advocate at HashiCorp he / him @ksatirli Kerim

    Satirli

  3. Cloud Infrastructure Automation Consistent workflows to provision, secure, connect, and

    run any infrastructure for any application.

  4. Workspaces vault-deployment Workspace to deploy and manage lifecycle of an

    HCP Vault Clusters vault-config Workspace to configure an (HCP) Vault Cluster for use with AWS packer Packer Template for AWS EC2 Instances packer-registry Workspace to deploy EC2 Instances using HCP Packer Registry workspaces Terraform Cloud Workspace to manage the lifecycle of Terraform Cloud Workspaces

  5. Workspace Isolation vault-deployment Workspace to deploy and manage lifecycle of

    an HCP Vault Clusters vault-config Workspace to configure an (HCP) Vault Cluster for use with AWS packer Packer Template for AWS EC2 Instances packer-registry Workspace to deploy EC2 Instances using HCP Packer Registry workspaces Terraform Cloud Workspace to manage the lifecycle of Terraform Cloud Workspaces

  6. Terraform Cloud https://app.terraform.io/app/a-demo-organization/

  7. HashiCorp Cloud Platform https://portal.cloud.hashicorp.com/

  8. Useful Links ▪ slides: speakerdeck.com/ksatirli/securing-iac-workflows ▪ code: github.com/ksatirli/securing-iac-workflows ▪ HCP

    sign-up: hashi.co/hcp-signup-june22

  9. Thank You [email protected]