Vault Fundamentals

Name: Vault Fundamentals
Rating: 5 (3 reviews)

Cybrary

Course

Learn how HashiCorp Vault can improve your security posture when it comes to storing sensitive passwords, maintaining confidential keys, implementing encryption, and establishing robust access management.

Time

4 hours 53 minutes

Difficulty

Beginner

CEU/CPE

5.0

NEED TO TRAIN YOUR TEAM? LEARN MORE

Join over 3 million cybersecurity professionals advancing their career

Facebook

Google

Microsoft

Already have an account? Sign In »

Course Content

Module 1: Introduction

Course Introduction

Module 2: Vault Overview

2.1Understanding the Problem Domain

2.2Core Capabilities

11m

2.3Complementary Technologies

2.4Alternative Technologies

Module 3: Secret Storage

3.1Environment Setup

3.2Launching "Dev" Server

10m

3.3Key/Value CRUD Ops

3.4Key/Value CRUD Ops with JSON

Module 4: Vault Concepts

4.1Architecture

11m

4.2Sealing and Unsealing

12m

4.3Server Configuration File

4.4Plugins Part 1

4.5Plugins Part 2

12m

Module 5: Access Management

5.1Basic ACL Policies

10m

5.2Basic ACL Policies Lab

5.3Entities, Aliases and Groups Lecture

5.4Entities, Aliases and Groups Lab

10m

5.5Policy Templating

13m

Module 6: Secret Storage Continued

6.1Secret Versioning

11m

6.2Cubbyhole Secrets Engine

6.3Cubbyhole Response Wrapping

6.4AppRole Auth Method

17m

Module 7: Dynamic Secrets in Action

7.1AWS Secrets Engine Lecture

7.2AWS Secrets Engine Lab

7.3AWS Secrets Engine Scenario

7.4DB Engines Setup

10m

7.5DB Secrets Engine Lab

Module 8: Encryption as a Service

8.1Encrypt/Decrypt Operations

8.2Encrypted Message Re-Wrapping

8.3Datakey Generation

8.4HMAC

Module 9: Summary

9.1Course Summary

Course Description

Familiarize yourself with strategies to address these areas of concern and get tactical by implementing various security measures using Vault. Understand the capabilities and design of the HashiCorp Vault application then apply your knowledge by solving a variety of real-world scenarios.

Prerequisites

Solid grasp of cloud fundamentals and some experience creating services in a public cloud (AWS - preferred, GCP, Azure, etc.). Good understanding of identity access management (IAM) concepts and terminology. You should be comfortable working on the command line.