Vault can generate 3 types of AWS credentials:
- Iam_user
- STS assumed_role
- STS federation_token
Today we (Hashi People) get our AWS creds from Doormat. Doormat generates AWS STS credentials valid for 8 hours. An AWS STS credential is made of:
Jérôme Baude jeromebaude
jeromebaude
/ Generate_AWS_creds_with_Vault_from_Doormat.md
Last active
January 13, 2021 15:48
jeromebaude
/ Vault_as_a_KMS_for_Ceph.md
Last active
November 10, 2021 09:06
The following readme guides you thru the steps to set up a minimal demo using a local Vault and a 1 node Rook/Ceph cluster hosted in Minikube
$ minikube start (ou minikube start --driver=virtualbox)
When installing rook for the first time, make sure we have a raw device on the minikube host (https://rook.io/docs/rook/v1.3/ceph-quickstart.html)
I hereby claim:
- I am jeromebaude on github.
- I am jeromebaude (https://keybase.io/jeromebaude) on keybase.
- I have a public key ASAPYZ-qB89Aie86vBbHeTMBMJFsP4D1zFQimDUeozaYAgo
To claim this, I am signing this object: