- setup HashiCorp Vault in the high available variant.
- use raft as backend
- use 2 azure VMs:
vault1andvault2 - use ansible for installation and configuration
- expose both Vault instances:
- add secret to 1
vault1- will it sync to the second one -> yes
- add secret to 1
- https://developer.hashicorp.com/vault/docs/configuration/storage/raft
- https://blog.yasithab.com/centos/hashicorp-vault-ha-cluster-with-raft-and-aws-kms-on-centos-7/
- https://www.velotio.com/engineering-blog/how-to-setup-hashicorp-vault-ha-cluster-with-integrated-storage-raft
ansible-galaxy install -r roles/requirements.yml --force
ansible-playbook -i inventory/azure.ini main.yml