Secrets Management with HashiCorp Vault in Kubernetes and Red Hat Op[...]

Course Description

Deploy, manage and integrate HashiCorp Vault as highly–available secret management service in your container platform.

This training focuses on relaying fundamental secrets management skills in the popular tool named Vault, vendored by HashiCorp company. It is based on gaining practical hand-on experience provided by numerous challenging exercises implemented by the trainees in a web browser accessible dedicated Lab environment. Training adepts are guided starting with initial installment tasks – 1st and 2nd day operations, then going through typical daily administration and ending with advanced features like supported secret engines and application client integration.

Outline

Introduction into HashiCorp Vault

Describe fundamentals, security model, architecture and deployment options.

Vault Deployment and Integration Fundamentals

Introducing various backends and high–availability configurations, Kubernetes and Red Hat OpenShift cluster deployment, Raft protocol and identity provider integration.

Vault Management Operations

Configuring and using Vault with CLI and Web management tools, implementing Policies, performing troubleshooting backup–restore operations.

Vault Secret Engines and Plugins

Enabling and using popular Cubbyhole, Database and PKI X.509 Certificates Secret Engines.

Vault Agent and Application Integration

Configuring Agent sidecar container and rendering templated secrets, describing available API Client Libraries and Red Hat OpenShift GitOps integration.

Audience and Prerequisites

This training is aimed at system administrators and operators expected to implement and run the Hashicorp Vault secrets management platform, especially in Kubernetes or Red Hat OpenShift environments.

For best experience, participants should be knowledgeable and skilled in the following areas:

  • Regular user experience with Linux platform and CLI
  • Operational knowledge of kubernetes or Red Hat OpenShift – typical platform resources, their usage and manual management with CLI and Web tools