With DevOps Secrets Vault you can securely provide secrets at the SPEED and AGILITY DevOps needs to stay competitive: [ Ссылка ]
TRANSCRIPT:
The rapid, iterative DevOps workflow can expose security vulnerabilities tied to privilege management. With Thycotic’s DevOps Secrets Vault you can securely provide secrets at the speed and agility DevOps needs to stay competitive.
ESTABLISH VAULT:
You begin by establishing your secrets vault
Open the shell program corresponding to your operating system.
a. Enter the “thy init” command
b. Enter your tenant name, “admin” for username, and the password you selected.
c. Then type the “thy whoami” command to verify you are logged in as the admin. You are authenticated to the vault!
d. Type “thy auth” and get your initial access token
CENTRALIZE SECRETS:
Eliminate disparate vault instances with this platform-agnostic, centralized software solution. Secrets are created using industry-standard JSON files so you can define secrets with any key-value pair.
ENFORCE ACCESS:
Next let’s create a secret and a new user.
The secrets are structured in a hierarchy just like the file structure on your computer.
Save the secret we just showed in the JSON file using the “thy secret create” command to the path shown.
We’ll create user “developer1” and assign a password using the “thy user create” command.
Now let’s look at the permissions document using the “thy config read” command.
The default policy is set for the admin only.
You can see they have all full rights to all resources.
We want to give that user access to the path where the secret is stored by editing the permissions document.
Open a text editor. Here we assign a policy id, description of the policy, the user, allowing full CRUD access, and specifying the path to the secret we just created.
You can also create a policy to deny access to secrets below that path.
Save the text file.
Save the updates to the permissions document using the “thy config update” command.
Developer1 now has full permissions on any secret at /servers/us-east, but no permissions to secrets a layer down in region1.
DevOps Secrets Vault lets you centralize management and enforce access control to minimize privilege account sprawl without sacrificing productivity.
AUTOSCALE and CONNECT TO ALL APPS
Thycotic’s DevOps Secrets Vault can scale with your AWS, Azure or GCP deployment. It also integrates with common DevOps tools, like Kubernetes and Jenkins, and robotic process automation tools. It can remove standing access to critical infrastructure with dynamic secrets for your cloud platforms.
There is so much more to our DevOps Secrets Vault than I could ever cover in a brief video. If you would like to try it for yourself, simply visit our website and download the free version today:
[ Ссылка ]
Learn more about DevOps and privileged access management here: [ Ссылка ]
To see what else we have coming down the pipeline, be sure to subscribe to our YouTube Channel: [ Ссылка ]
Join us in Social Media:
Get more time-saving cyber security resources from us on LinkedIn and Twitter:
[ Ссылка ]
[ Ссылка ]
Ещё видео!