1. Getting Started with Vault
- Oveview of HashiCorp Vault
- Installing Vault – Windows Users
- Installing Vault – Linux and Mac Users
- Initializing Vault with Dev Server Mode
- Creating our First Secret
- Overview of Secrets Engine
- Overview of Dynamic Secrets
- Generating AWS Credentials dynamically
- Managing Leases
- Path Based Revocation
- Overview of Transit Secret Engine
- Transit Engine – Dealing with Larger Data Blobs
- Important Features – Transit Secret Engine
- TOTP Secrets Engine
- PKI Secrets Engine
2. Vault – Authentication and Authorization
- Authentication in Vault
- Overview of Vault Policies
- Vault Policies – Part 02
- AppRole Authentication Method
- HTTP APis in Vault
- Token Capabilities
- Entities and Aliases
- Identity Groups
- Tools in Vault
- Vault Auto-Complete
- ACL Policy Path Templating
- Vault Policy – Transit Secret Engine
4. Vault Tokens
- Overview of Vault Tokens
- Token Helper
- Tokens Time-To-Live
- Lifecycle of Service Tokens
- Token Accessories
- Overview of Orphaned Tokens
- Cubbyhole Secret Engine
- Response Wrapping
- Overview of Batch Tokens
- Token TTL Configuration
- Periodic Token
3. Vault Architecture
- Vault for Production Environments
- Vault UI for Production
- Understanding Vault Agent
- Vault Agent Caching
- Shamirs Secret for Unsealing Process
- Overview of Vault Auto-Unseal
- Implementing Auto-Unseal with AWS KMS
- Vault Plugin Mechanism
- Audit Devices
- Overview of Vault Enterprise
- Vault Namespaces
- Vault Replication
- Monitoring Telemetry in Vault
- High-Availability Setup of Vault
- Implementing Vault HA
- Raft Storage – Snapshot and Restore