Skip to content

ctrlalttaco/vagrant-vault-ha

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
pki
pki
 
 
scripts
scripts
 
 
.gitignore
.gitignore
 
 
CONSULACL.md
CONSULACL.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
Vagrantfile
Vagrantfile
 
 

Repository files navigation

Vagrant Consul and Vault

Synopsis

Build a three-node Consul and two-node Vault cluster using HashiCorp Vagrant.

Pre-requisites

MacOS

Homebrew:

brew cask install virtualbox virtualbox-enterprise-pack vagrant

Configuration

Consul

Version : 1.4.4

TLS Enabled : true

Datacenter Name : vagrant

Operating System : Ubuntu 18.04 LTS

Vault

Version : 1.1.0

TLS Enabled : true

Operating System : Ubuntu 18.04 LTS

Nodes

consul0 - 10.100.0.11

consul1 - 10.100.0.12

consul2 - 10.100.0.13

vault1 - 10.100.10.11

vault2 - 10.100.10.12

Usage

vagrant up

Environment Variables

CONSUL_VERSION - Specify the version of Consul to use

CONSUL_ENTERPRISE - Download Consul Enterprise binary

CONSUL_ACL - Set to true to enable ACL on Consul

VAULT_VERSION - Specify the version of Vault to use

Consul ACL Policies

Follow the Consul ACL Guide to bootstrap and configure the agent token.

Example Consul Agent Policy:

node_prefix "consul" {
    policy = "write"
}

service_prefix "" {
    policy = "read"
}

Example Vault Consul Client Policy:

node_prefix "vault" {
    policy = "write"
}

service "vault" {
    policy = "write"
}

agent_prefix "vault" {
    policy = "write"
}

key_prefix "vault/" {
    policy = "write"
}

session_prefix "" {
    policy = "write"
}

References

Consul Documentation

Consul Guides

Consul API Reference

HashiCorp Learn - Consul

About

No description, website, or topics provided.

Resources

Readme

License

MPL-2.0 license
Activity

Stars

2 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages