Simplify PKI management with HashiCorp Vault and ACME

Organizations that implement PKI typically have to manage it with a combination of multiple tools and manual processes. This process can lead to long rotation times and outages due to expired certificates. Ultimately, these traditional methods do not provide the automation and security needed to support modern infrastructure and applications. HashiCorp Vault provides a central place to secure, store, and control access to tokens, passwords, certificates, and encryption keys. Using automation capabilities with Vault, such as the Automatic Certificate Management Environment (ACME) specification for issuing and renewing leaf server certificates, enables faster, more secure rotation of certificates.

0:00 - Intro
0:15 - Demo configuration
0:30 - PKI secrets engine configuration
1:00 - Configure Vault as ACME server
2:08 - Configure Vault client and ACME client
3:08 - Run client request for certificate
3:30 - Review certificate from ACME server

#hcpvault #hashicorpvault #hashicorp

HashiCorp provides infrastructure automation software for multi-cloud environments, enabling enterprises to unlock a common cloud operating model to provision, secure, connect, and run any application on any infrastructure. HashiCorp tools Vagrant, Packer, Terraform, Vault, Consul, Nomad, Boundary, and Waypoint allow organizations to deliver applications faster by helping enterprises transition from manual processes and ITIL practices to self-service automation and DevOps practices.