Skip to content

arnalpascal/vault-lab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
provisioning
provisioning
 
 
vault
vault
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
Vagrantfile
Vagrantfile
 
 

Repository files navigation

vault-lab

Start a Vault lab with podman on fedora. Go to /vagrant and start vault with

./vault-lab.sh

This lab start a couple of Vault servers :

  1. One Vault server that generate one infra PKI, i.e., PKI for others Vault servers
  2. One Vault transit for auto unseal a cluster
  3. Three Vault servers with embedded raft storage that compose one cluster
  4. One Traefik load balancer expose on https://vault:8443

The cluster define one PKI with a root and a intermediate CA.

To generate certificate / private key :

  1. Source the cluster environment variable file
    . cluster/vault-cluster.env
  2. Use Vault to generate private keys and certficates
    vault write -format=json pki-int/issue/pki-int-role common_name=test.org alt_names=other.org ip_sans=10.0.0.1

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages