Difficulty: beginner
Estimated Time: 10 minutes

HashiCorp Vault secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing.

YouTube

This lab walks you through the installation and configuration of a Vault server, and some of the primary tasks in operating Vault:

  • Installing Vault
  • Run Vault in Development Mode
  • Write Vault Configuration File
  • Initialize Vault
  • Enable Audit Logging
  • Generating Root Token
  • Key Rotation

Logo

In this lab, you performed the following tasks:

  • Installing Vault
  • Run Vault in Development Mode
  • Write Vault Configuration File
  • Initialize Vault
  • Enable Audit Logging
  • Generating Root Token
  • Key Rotation

To learn more about Vault operation topics, refer to the following resources.

Resources:

Don’t stop now! The next scenario will only take about 10 minutes to complete.

Vault Operations

Step 1 of 7

Installing Vault

Vault is distributed as a binary package for all supported platforms and architectures.

To install Vault, find the appropriate package for your system and download it. (NOTE: Vault is packaged as a zip archive.)

Enter the following command into the terminal, or click on the command () to automatically copy it into the terminal and execute to downloads the 0.11.4 of the Vault binary for Linux.

export VAULT=0.11.4
wget https://releases.hashicorp.com/vault/${VAULT}/vault_${VAULT}_linux_amd64.zip

After downloading Vault, unzip the package, and go ahead and remove the zip file:

unzip vault_${VAULT}_linux_amd64.zip && rm vault_${VAULT}_linux_amd64.zip

Vault runs as a single binary named vault. Any other files in the package can be safely removed and Vault will still function.

ls -al | grep vault

Finally, make sure that the vault binary is available on the PATH:

install -c -m 0755 vault /usr/bin

That's it!

Execute the following command to verify the vault version:

vault version
config.hcl