In a modern DevOps infrastructure, operating an internal Public Key Infrastructure (PKI) is essential to secure communications between services. Instead of relying on self-signed certificates or external certificate authorities, organizations…
In this post, I will show you how to integrate Vault with Kubernetes secrets. There are other ways of integration, such as injecting secrets as a text file into the…
There are several reasons to store certain types of files such as secrets, certificates, private keys, etc. But without exaggerating, Vault is not a file store. One of the simplest…
In this post, I want to leave here an example of how to get a secret from Hashicorp Vault, from an Ansible playbook. The example is very simple, I will…
I’ll leave here some code snippets to show how to do authentication in Python in Vault using the methods described in https://devops-db.com/vault-authentication-methods/. https://github.com/faustobranco/devops-db/tree/master/knowledge-base/python/vault-authentication Token. https://github.com/faustobranco/devops-db/blob/master/knowledge-base/python/vault-authentication/auth_token.py LDAP. TLS. For this method,…
In this post, I want to show you the 4 most common authentication types for Vault. I won’t go into the details of each of them, as that would generate…
In this post, I will show simple python code snippets to read and write KV secrets in Vault. I’ll use the structure and Vault we created in other posts here.…
devops-db.com