Vault 101
In this course you will get to:
- Learn everything you need to know about Vault to ace the Vault Associate Exam
- 8+ hours of video content
- Instructor has his camera on making you feel that you're right in the classroom
- Hand-drawn animated diagrams to help you grasp the topics better
- Lots of hands-on labs to learn by doing
- English closed captions so you won't miss a word
- Quizzes to help you grasp the material well
- Join our Community
Prerequisites
- An open mind and a willingness to learn
- Basic knowledge of the Linux terminal
- No coding experience required (but good to have)
- A computer with Internet access
Audience
Practitioners and technology managers looking:
- For an introduction to secrets management with HashiCorp Vault
- To take the HashiCorp Vault Associate Exam
Course Objectives
By the end of the course, you will be able to:
- Explain the purpose of using Vault for modern secrets management
- Gain a solid grasp of the architecture and use cases for Vault
- Identify the right authentication methods and secrets engines in Vault to use
- Take the Vault associate exam
- Apply what you’ve learned in real-world scenarios beyond the certification
Course Outline
- Section 1: Course Introduction
- Section 2: Vault Introduction
- Section 3: Installing the Vault CLI
- Section 4: Interacting with Vault
- Section 5: Vault Architecture
- Section 6: Starting a Production Vault Server
- Section 7: Authentication Methods
- Section 8: Policies
- Section 9: Tokens
- Section 10: Secrets Engines
- Section 11: Replication Design
- Section 12: The Vault Agent
- Section 13: Exam Preparation
Course Curriculum
Section 1 - Course Introduction (5:22)
HashiCorp Vault Course Introduction(5:22)
Code Repository
Development Environment
AWS Environment
Community
Referral Program
Section 2 - Vault Introduction (21:15)
What is HashiCorp Vault?(4:43)
The Traditional Security Model(3:29)
Identity Based Security Model(4:48)
Vault Use Cases(5:35)
Vault OSS vs Enterprise(2:44)
Section 2 - Quiz
Section 3 - Installing the Vault CLI - This is an optional section If not using Gitpod (13:01)
Install Vault - Windows Users(5:44)
Install Vault - Mac Users(1:44)
Install Vault - Linux Users(2:16)
Manual Vault Install(3:17)
Section 4 - Interacting with Vault (35:08)
Basic Vault CLI Commands(4:49)
Vault Server Modes(11:00)
The Vault UI(6:37)
The Vault API(12:42)
Section 4 - Quiz
Section 5 - Vault Architecture (21:11)
Vault Architecture - Internals(2:55)
Vault Seal and Unseal(7:56)
Vault Architecture - High Availability(4:48)
Vault Architecture - Multi-Region(5:32)
Section 5 -Quiz
Section 6 - Starting a Production Vault Server (33:08)
The Configuration File(1:59)
Initializing Vault(2:06)
Unsealing Vault(1:36)
Vault Server Status(1:05)
Storage Backends(2:24)
Audit Devices(2:21)
Run a Production Vault Server Lab(10:33)
Auto Unseal(2:28)
AWS Auto Unseal Lab(8:36)
Section 6 - Quiz
I need your help
Section 7 - Authentication Methods (1:20:22)
Authentication Methods - Overview(2:52)
Types of Auth Methods(2:27)
Userpass Auth Method(1:13)
Userpass Auth Lab(19:34)
Active Directory Auth Method(1:25)
AppRole Auth Method(2:24)
AppRole Auth Lab(12:35)
Kubernetes Auth Method(2:30)
AWS Auth Method(2:35)
Vault Entities and Aliases(3:20)
Vault Identity Groups(4:13)
Vault Entities, Aliases, and Identity Groups Lab(25:14)
Section 7 - Quiz
Section 8 - Policies (51:58)
Vault Policies - Overview(4:06)
Policy Syntax(3:31)
Policies Lab 1(13:38)
Managing Policies(3:24)
Policy Capabilities(7:07)
Policies Lab 2(12:10)
Templated Policies(2:02)
Admin Policy Example(2:50)
Sentinel Policies(3:10)
Section 8 - Quiz
Section 9 - Tokens (36:07)
Vault Tokens - Overview(2:17)
Root Tokens(3:28)
Token Hierarchies and Orphan Tokens(2:32)
Token Accessors(2:38)
Tokens Lab 1(11:12)
Token TTL, Max TTL, and Periodic Tokens(4:23)
Service and Batch Tokens(3:31)
Tokens Lab 2(6:06)
Section 9 - Quiz
Section 10 - Secrets Engines (1:45:15)
Secrets Engines - Overview(3:55)
Key / Value (KV)(3:16)
KV Commands 1(6:54)
KV Secrets Engine Lab 1(13:15)
KV Commands 2(4:43)
KV Secrets Engine Lab 2(11:51)
Dynamic Secrets(3:55)
Dynamic Secrets Examples: Database, AWS, PKI(5:29)
AWS Secrets Engine Lab(8:37)
Transit Secrets Engine - Encryption as a Service(5:38)
Transit Secrets Engine - Key Rotation and Data Re-wrap(4:29)
Transit Secrets Engine Lab(9:00)
Cubbyhole Secrets Engine(3:33)
Cubbyhole Secrets Engine Lab(5:05)
Cubbyhole Response Wrapping(5:30)
Cubbyhole Response Wrapping Lab(7:36)
Section 10 - Quiz
Section 11 - Replication Design - Disaster Recovery and Performance Replication (32:21)
Replication Design with DR and PR(7:10)
DR and PR Whiteboard and Demo [Optional] (25:11)
Section 11 - Quiz
Section 12 - The Vault Agent (35:16)
Vault Agent Overview(2:49)
Vault Agent Auto-Auth(4:12)
Vault Agent Caching(3:50)
Vault Agent Templates(3:01)
Vault Agent Lab(21:24)
Section 12 - Quiz
Section 13 - Exam Preparation (11:43)
Exam Objectives(4:06)
What to Expect(7:37)
Section 14 - Closing Remarks and Next Steps (0:38)
Closing Remarks(0:38)
I'd like to hear from you
I need your help
Referral Program
Our Packages
1 Week Own Pace $1,000
1 week of self-paced hands-on with video lectures
Includes two 1-hour office hours for live Q&A
A dedicated lab environment per student for a week
An AWS account given per student
Access to a private discord channel dedicated to the team for Q&A
2 Day Live $2,200
2 days (6 hours each) hands-on live remote instructor-led class
Access to video lectures
A dedicated lab environment per student for a week
An AWS account given per student
Access to a private discord channel dedicated to the team for Q&A
Price is per student
Minimum of 4 students per class
All prices are in USD
If you're interested in this course
Contact us at info@tekanaid.com