$30 off During Our Annual Pro Sale. View Details »

Securing IaC Workflows

Kerim Satirli
PRO
June 01, 2022
Programming
0
120

Securing IaC Workflows

In this demo, I show how to secure Infrastructure as Code (IaC) workflows using HashiCorp Cloud offerings HCP Vault and HCP Packer, with a bit of Terraform Cloud best-practices sprinkled in for operational happiness.

---

Companion Code: https://github.com/ksatirli/securing-iac-workflows

Kerim Satirli
PRO

June 01, 2022
Tweet

More Decks by Kerim Satirli

See All by Kerim Satirli
Learning Infrastructure with a local Compute Cluster
ksatirli
PRO
0
1
Event-driven Access Controls
ksatirli
PRO
0
25
Better Reliability through Observability (and Experimentation)
ksatirli
PRO
1
540
Strengthening your DevOps muscle
ksatirli
PRO
1
2k
Building Infrastructure you can (mostly) trust
ksatirli
PRO
0
180
Enhancing Infrastructure Lifecycles
ksatirli
PRO
0
110
Cloud Cost Optimisation
ksatirli
PRO
2
110
Testable - Trustable
ksatirli
PRO
1
75
Reusable Infrastructure with Terraform
ksatirli
PRO
1
83

Other Decks in Programming

See All in Programming
Node.jsの2022年と未来 / Node.js in 2022 and Future
masashi
1
670
redux使うのやめました
hirasa
1
150
Composing an API with Kotlin vol 2 (Advanced Kotlin Dev Day 2022)
zsmb
1
240
Hono - Ultrafast web framework for Cloudflare Workers, Deno, Bun, and Node.js
yusukebe
2
4.9k
클라우드 시대에 맞는 사이트 신뢰성 엔지니어
outsider
0
640
コルーチン〜Androidと非同期処理〜
nyafunta9858
0
100
[JJUG CCC 2022 fall] Fargate上のJVMからCPUを認識するまで 〜正しく認識されないCPUの謎を追え〜
orekyuu
0
180
RenovateをiOSアプリ開発に導入・運用した話
coffmark
0
110
Git 未経験者 が GitHub Actions で CICD できるようになるまで / 20221127-JJUGCCC-2022-Fall-Git-beginner-built-CICD-pipeline-with-GitHubActions
mackey0225
2
150
10年前のRails Girls Japanむかしばなしとわたし #rggjp #rgjp10th
yotii23
3
170
GISとDjango GEOS APIの話
mierune
0
320
それぞれの特徴から考えるフレームワーク選び
ippey
1
280

Featured

See All Featured
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
317
19k
Rails Girls Zürich Keynote
gr2m
87
12k
Become a Pro
speakerdeck
PRO
3
3.1k
Unsuck your backbone
ammeep
658
55k
Why Our Code Smells
bkeepers
PRO
326
55k
The Language of Interfaces
destraynor
149
21k
Designing for Performance
lara
599
64k
Learning to Love Humans: Emotional Interface Design
aarron
262
38k
The World Runs on Bad Software
bkeepers
PRO
59
5.6k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
21
1.6k
How to train your dragon (web standard)
notwaldorf
64
4.1k
Ruby is Unlike a Banana
tanoku
92
9.5k

Transcript

  1. Secure Workflows with HCP Vault and Packer Kerim Satirli Sr.

    Developer Advocate HashiCorp

  2. Sr. Developer Advocate at HashiCorp he / him @ksatirli Kerim

    Satirli

  3. Cloud Infrastructure Automation Consistent workflows to provision, secure, connect, and

    run any infrastructure for any application.

  4. Workspaces vault-deployment Workspace to deploy and manage lifecycle of an

    HCP Vault Clusters vault-config Workspace to configure an (HCP) Vault Cluster for use with AWS packer Packer Template for AWS EC2 Instances packer-registry Workspace to deploy EC2 Instances using HCP Packer Registry workspaces Terraform Cloud Workspace to manage the lifecycle of Terraform Cloud Workspaces

  5. Workspace Isolation vault-deployment Workspace to deploy and manage lifecycle of

    an HCP Vault Clusters vault-config Workspace to configure an (HCP) Vault Cluster for use with AWS packer Packer Template for AWS EC2 Instances packer-registry Workspace to deploy EC2 Instances using HCP Packer Registry workspaces Terraform Cloud Workspace to manage the lifecycle of Terraform Cloud Workspaces

  6. Terraform Cloud https://app.terraform.io/app/a-demo-organization/

  7. HashiCorp Cloud Platform https://portal.cloud.hashicorp.com/

  8. Useful Links ▪ slides: speakerdeck.com/ksatirli/securing-iac-workflows ▪ code: github.com/ksatirli/securing-iac-workflows ▪ HCP

    sign-up: hashi.co/hcp-signup-june22

  9. Thank You kerim@hashicorp.com