In this video, we discuss secure sessions management using #HashiCorp #Boundary. HashiCorp Boundary is one of two recent products announced at the latest HashiConf Digital in October 2020. The other product is HashiCorp #Waypoint which we'll demo in a separate video.
You can find a blog post below going through the details.
tekanaid.com/hashicorp-bounda...
Below is the flow of the video:
1. We first start off with a few slides explaining the reason behind the creation of HashiCorp Boundary.
2. We go over the traditional workflow for human to machine access and why it's flawed.
3. Then we take a look at how HashiCorp Boundary solves the issues described in the traditional workflow.
4. We then go over the structure and hierarchy within HashiCorp Boundary
5. A discussion over the architecture of a production deployment in AWS is next
6. We go over a diagram of what our demo environment looks like
7. We discuss the future roadmap for HashiCorp Boundary
8. Finally we see HashiCorp Boundary in action with a demo. In this demo we SSH and RDP to 2 different target hosts and witness the packets in Wireshark. We'll see how HashiCorp Boundary proxies the connections and the target hosts are not visible in our Wireshark captures.
One thing to note here is that we use the HashiCorp Boundary Terraform Provider to configure Boundary.
I was very impressed by this initial 0.1 release by the HashiCorp team. I look forward to seeing where this product goes in the future.
If you're looking for a secure access management system and a secure sessions management system, then take a look at HashiCorp Boundary.
You can skip to the relevant timestamp below:
▬▬▬▬▬▬ T I M E S T A M P S ⏰ ▬▬▬▬▬▬
00:00 Introduction
02:18 Traditional Human to Machine Access Workflow
05:00 Boundary's Workflow
07:55 Boundary's Structure
09:48 Architecture of a Production Deployment
13:03 Demo Diagram
14:36 References
15:18 Roadmap
16:48 Demo Starts Start Boundary in Dev Mode
19:23 Run Terraform to Configure Boundary
23:00 SSH Connect to Linux Server
29:20 Wireshark the SSH Connection
33:03 RDP Connect to Windows Server
34:27 Wireshark the RDP Connection
35:39 Conclusion
▬▬▬▬▬▬▬▬▬ Courses 🎓 ▬▬▬▬▬▬▬▬
- TeKanAid Academy Subscription ► bit.ly/subscription-premium
- Terraform 101 - Certified Terraform Associate ► bit.ly/hc-terraform-101
🎟️ Get 15% off of my Terraform 101 Course with this coupon ► KZitem15TF101
- HashiCorp Sentinel 101 ► bit.ly/hc-sentinel-101
- HashiCorp Vault 101 - Certified Vault Associate ► bit.ly/hc-vault101
🎟️ Get 15% off of my Vault 101 Course with this coupon ► KZitem15VAULT101
- HashiCorp Vault 201 - Vault for Apps in Kubernetes ► bit.ly/hc-vault-201
▬▬▬▬▬▬▬▬ Useful Links 🛠 ▬▬▬▬▬▬▬
Get the code ► tekanaid.com/posts/hashicorp-...
Blog post that goes with this video ► tekanaid.com/posts/hashicorp-...
Blog Announcement ► www.hashicorp.com/blog/hashic...
Armon's Whiteboard ► • Introduction to HashiC...
Terraform Boundary Provider ► registry.terraform.io/provide...
Getting Started Learn Guide ► learn.hashicorp.com/tutorials...
Production AWS Reference Architecture ► github.com/hashicorp/boundary...
Production High Availability Architecture ► www.boundaryproject.io/docs/i...
Roadmap ► www.boundaryproject.io/docs/r...
Get the code ► tekanaid.com/posts/hashicorp-...
▬▬▬▬▬▬▬▬ Community 🌎 ▬▬▬▬▬▬▬▬▬
- TeKanAid Community Forum ► tekanaid.com/community
▬▬▬▬▬▬▬▬ Connect 👋 ▬▬▬▬▬▬▬▬▬
Website ► bit.ly/TeKanAid_Website
Facebook Page ► bit.ly/TeKanAid_Facebook
Don't forget to subscribe ► bit.ly/TeKanAid_KZitem_Subsc...
MEDIUM ► bit.ly/Sam_Medium
TWITTER TeKanAid ► bit.ly/TeKanAid_Twitter
TWITTER Sam ► bit.ly/Sam_Twitter
LINKEDIN TeKanAid ► bit.ly/TeKanAid_LinkedIn
LINKEDIN Sam ► bit.ly/Sam_linkedin
Негізгі бет Ғылым және технология HashiCorp Boundary Demo for Secure Sessions Management
Пікірлер: 50