client-poc
Companion to PoC doc, with commands and sequence to execute demo.
Note
Make sure that for the Vault cli commands, both the client and the server use the same version.
##Demo steps:
Deploy Vault
Manual
- Download Vault binary
curl xxx
- Ensure AWS ports are open
Terraform
Architecture for dev:
Load balancer | Vault | Consul (3x)
cd /provision-vault/dev/terraform-aws
# If AWS cli not configured, ensure the following are set:
export AWS_DEFAULT_REGION=region
export AWS_ACCESS_KEY_ID=your key id
export AWS_SECRET_ACCESS_KEY= your access key
Configure your working environment:
- Download Vault client
curl download vault
- Set environment variables:
export VAULT_ADDR=[Vault address]
export VAULT_TOKEN=[Vault token]
- Ensure you have TLS certificate
Test cases:
- VE-INIT-001: Vault init
- VE-WEB-002: Verify web ui
- VE-TLS-003: TLS config
- VE-HA-004: Failover to standby node
- VE-FUNC-005: Create policies and secrets CRUD
- VE-MTEN-006: Mount endpoints with different permissions
- * VE-DYN-007: Dynamic secrets - MySQL
- * VE-TEMP-008: Consul Template
- * VE-AUTH-009: LDAP
- * VE-JAVA-010: Java
- VE-SSH-011: SSH
- VE-PERFREP-012: Performance replication
- VE-SENTINEL-013: Sentinel