CloudAcademy

Configuring Vault to Use LDAP Authentication

Lab Steps

keyboard_tab
lock
Logging in to the Amazon Web Services Console
lock
Opening the AWS Cloud9 IDE
lock
Installing HashiCorp Vault
lock
Starting the Vault Sever in Development Mode
lock
Understanding the LDAP Directory
lock
Creating Vault Policies for the Organization
lock
Configuring Vault LDAP Authentication
lock
Testing the LDAP Authentication and Access Policies

Ready for the real environment experience?

DifficultyIntermediate
Duration45m
Students24

Description

Lab Overview

HashiCorp Vault is a modern, multi-cloud-friendly solution for managing secrets at scale. To ease adoption of Vault into your organization, Vault provides LDAP authentication. In this Lab, you will learn how to configure Vault to using an organization's LDAP identities and groups for authentication without duplicating usernames, passwords, or memberships. You will create access policies that map to LDAP groups to seamlessly authorize LDAP users in Vault.

Lab Objectives

Upon completion of this Lab, you will be able to:

  • Install Vault on Linux systems
  • Enable and configure LDAP authentication in Vault
  • Create access policies that map to LDAP groups
  • Authenticate LDAP users using the Vault CLI

Lab Prerequisites

You should be familiar with:

  • Vault basics
  • LDAP directory and schema knowledge is beneficial, but not required
Environment before
PREVIEW
arrow_forward
Environment after
PREVIEW

About the Author

Students8062
Labs60
Courses6
Learning paths3

Logan has been involved in software development and research for over eleven years, including six years in the cloud. He is an AWS Certified DevOps Engineer - Professional, MCSE: Cloud Platform and Infrastructure, and Certified Kubernetes Administrator (CKA). He earned his Ph.D. studying design automation and enjoys all things tech.

Covered Topics