Source: www.hashicorp.com
Integrating Azure AD Identity with HashiCorp Vault — Part 1: Azure ApplicatCategory: Database, Security, Hashicorp
When applying a zero trust security mindset to applications and infrastructure, identity is the foundational component that the https://www.hashicorp.com/resources/the-zero-trust-mindset are built on. Using HashiCorp Vault's many https://www.vaultproject.io/docs/secrets, short-lived credentials can be provisioned for most application and infrastructure components.
While user and application identity can be provisioned and managed in Vault, many organizations operating in Azure will already have this in place using https://azure.microsoft.com/en-gb/services/active-directory/#overview.
In order to configure Vault's OIDC auth method to use AAD as an OIDC provider, Vault needs to be registered as an application in AAD.
I also explored how to use AAD to enable users and applications to authenticate with Vault using OIDC.
While user and application identity can be provisioned and managed in Vault, many organizations operating in Azure will already have this in place using https://azure.microsoft.com/en-gb/services/active-directory/#overview.
In order to configure Vault's OIDC auth method to use AAD as an OIDC provider, Vault needs to be registered as an application in AAD.
I also explored how to use AAD to enable users and applications to authenticate with Vault using OIDC.
Related Articles
Community Partners
DevOps Careers