Search the Community

Enterprises leverage Public key infrastructure (PKI) to encrypt, decrypt, and authenticate information between servers, digital identities, connected devices, and application services. PKI is used to establish secure communications to abate risks to data theft and protect proprietary information as organizations increase their reliance on the internet for critical operations. This post will explore how public key cryptography enables related keys to encrypt and decrypt information and guarantee the integrity of data transfers... View the full article

PCI DSS (Payment Card Industry Data Security Standard) is a global standard that establishes technical and operational criteria for protecting payment data. The PCI Security Standards Council announced PCI DSS v4.0 on March 31, 2022. Now organizations have until March 31, 2025 to comply with the new standard. HashiCorp Vault can play a significant role in helping your organization attain PCI DSS certification by providing secure and compliant management of sensitive data, including cardholder data. This post will give a brief overview of the areas where Vault can help your organization comply with the new standards in time... View the full article

In the ever-evolving landscape of IT infrastructure, the ability to create custom images efficiently and consistently is a game-changer. This is where HashiCorp Packer comes into play, a powerful tool that revolutionizes the image creation process across platforms such as AWS, Azure, and GCP, among others. This blog post, based on the Hashicorp Packer course offered by KodeKloud, serves as a comprehensive guide to mastering HashiCorp Packer... View the full article

We are delighted to announce the winners of the 2023 HashiCorp Partner Network Awards for Systems Integrators (SIs). The awards honor top-performing partners that have demonstrated excellence in sales and services for HashiCorp solutions. They celebrate our partners’ commitment to helping enterprises accelerate their cloud adoption strategies. Each of these winners has delivered significant technology capabilities relating to the HashiCorp portfolio, assisted with growing the capabilities of HashiCorp’s products, and consistently delivered value to our joint customers through services and innovation initiatives... View the full article

HashiCorp’s vibrant ecosystem incorporates hundreds of partners that help address specific customer challenges collaboratively and efficiently. At the HashiConf conference in San Francisco today, we are announcing the winners of the 2023 HashiCorp Technology Partner Awards. The Technology Partner Awards celebrate HashiCorp technology partners who have prioritized customer solutions around the HashiCorp Cloud Platform (HCP) framework, simplifying customer implementations through new integrations, co-engineered solutions, and participation in joint marketing initiatives. Our ecosystem partners are foundational to the success of HashiCorp, and we are thrilled to recognize their contributions... View the full article

HashiCorp Vault scans for skeletons in your code closetView the full article

HashiCorp tweaks Terraform with user interface changes and AI infused testingView the full article

HCP Packer is a powerful tool for tracking, governing, and managing image artifacts across multi-cloud environments. Today at HashiConf, we are introducing two new features for HCP Packer: project-level webhooks and streamlined run task reviews. Project-level webhooks allow users to notify external systems about specific HCP Packer events using automation. Streamlined run task reviews provide meaningful context on run task evaluations for the HCP Packer run task on HashiCorp Terraform Cloud, building on the new functionality released in September. These two additions help organizations improve the efficiency and security of image-related workflows across their multi-cloud infrastructure estate... View the full article

Today at HashiConf, we are pleased to announce the general availability of HCP Vault Secrets, a new software-as-a-service (SaaS) offering of HashiCorp Vault that focuses on secrets management. Released in beta earlier this year, HCP Vault Secrets lets users onboard quickly and is free to get started. The general availability release of HCP Vault Secrets builds on the beta release with production-ready secrets management capabilities, additional secrets sync destinations, and multiple consumption tiers. During the public beta period, we worked on improvements and additions to HCP Vault Secrets. Focused on secrets management for developers, these additions will help our users to: Boost security across clouds and machines: Centralize where secrets are stored and minimize context switching between multiple solutions to reduce the risk of breaches caused by human error. Increase productivity: Improve security posture without expending additional time and effort. Enhance visibility of secrets activity across teams: Understand when secrets are modified or accessed — including by whom, when, and from where — with advanced filtering and storage. Comply with security best practices: Eliminate manual upgrade requirements with fully managed deployment to keep your instance up to date and in line with security best practices. Last-mile secrets availability for developers: Centralize secrets in HCP Vault Secrets while syncing secrets to existing platforms and tools so developers can access secrets when and where they need them. View the full article

HashiCorp Boundary, a modern privileged access management (PAM) offering for cloud-driven environments, provides just-in-time access to infrastructure without requiring end users to manage IP addresses or credentials. Boundary also ensures an organization’s infrastructure is secure and compliant by using identity driven controls and ensuring least-privilege access, session and credential expiration, and session recording. These new capabilities help organizations streamline their user workflow as they leverage a cloud operating model for secure remote access. Boundary 0.14, which we are announcing today at HashiConf, adds important new functionality, including: Dramatically improved SSH access: Users can now seamlessly establish and connect to SSH sessions directly in the Boundary Desktop client. Expanded authentication options: Boundary 0.14 includes a fully instrumented LDAP auth method, with support in both the desktop client and admin UI. Enhanced security removing hard-coded credentials: AWS administrators now have enhanced security and access control for their most sensitive recordings with the addition of AssumeRole authentication for storage buckets. View the full article

At HashiConf Global in October of 2022, HashiCorp announced the public beta of Waypoint on the HashiCorp Cloud Platform (HCP), with the goal of helping to standardize application delivery across platforms. Now, we’re excited to share our updated vision for HCP Waypoint to empower platform teams to define golden patterns and workflows for developers to manage applications at scale. Along with the new vision, we are announcing a pair of new features for HCP Waypoint today at HashiConf 2023. Designed to help platform teams abstract and share standardized workflows with developers, without making them worry about the infrastructure details, the new features include: Templates: Enables enterprise platform teams to abstract and standardize application scaffolding Add-ons: Helps define application dependencies, such as infrastructure resources, using HashiCorp Terraform, and makes them available to application developers as dependencies View the full article

Today at HashiConf, we are introducing a number of significant enhancements for HashiCorp Consul, our service networking solution that helps users discover and securely connect any application. We're also formally introducing HCP Consul Central, previously known as the management plane for HCP Consul. These new capabilities help organizations enhance workflow management, increase reliability and scale, and bolster security for operators as they leverage a cloud operating model for service networking. Some of the notable updates include: Multi-port support (beta): a new, simplified way to onboard modern distributed applications that require different ports for various traffic types for intricate client-server communication Locality-aware service mesh routing within a Consul datacenter: optimizes traffic routing within datacenters, prioritizing local instances for lower latency and reduced costs. Sameness groups (GA): simplifies multi-cluster operations, enhancing service reliability for enterprises. HCP Consul Central: introduces observability features for HashiCorp-managed and linked self-managed clusters, enhancing cluster health monitoring. Additionally, a global API simplifies integration with HCP Consul Central, allowing platform operators to streamline workflows and access cluster details. View the full article

When working with HashiCorp Terraform, it’s important to understand how to interact with external systems and data. Terraform provides a mechanism to query and use information from external sources through data sources using a data block. In this article, we’ll explore what data sources are, provide a use case to illustrate their importance, and clarify […] The article Terraform: How are Data Sources used? appeared first on Build5Nines. View the full article

Whether you're at the helm of a multinational corporation or leading a dynamic startup, the cloud is no longer optional — it's essential. For C-suite executives who bear the responsibility of steering their organizations towards a cloud-first future, this brings a set of challenges. Our newest HashiCast podcast series, Navigating the Cloud for C-Suites, tackles the cloud complexities that leaders face from taking the first steps towards adoption to maintaining compliance. The series is hosted by three HashiCorp cloud experts: Adeel Ahmad, Strategic Advisor: Adeel is an award-winning cloud architect with more than a decade of experience supporting full stack implementations across finance, telecommunications, and enterprises. Sarah Polan, Field CTO: With a background in financial services, Sarah wants to elevate the conversation about strategic cloud adoption and improve the balance between technical enablement, velocity, and security. Christian Reilly, Field CTO: With a background on both the enterprise and vendor sides, Christian is passionate about cloud adoption and collaborates with organizations to understand market needs while reinforcing innovation and product strategy. Each month, Navigating the Cloud for C-Suites focuses on a pressing cloud transformation challenge, with insights from expert guests on cloud strategy, innovation, and staying ahead of the curve. You can look forward to the series tackling important cloud issues in the months to come: October 2023 — Committing to the cloud: Available now, this episode focuses on why cloud adoption is essential and provides actionable takeaways for leaders. November 2023 — People: Overcoming the skills gap: Christian, Sarah, and HashiCorp’s Head of Talent in EMEA, James Footman, shine a spotlight on the skills gap that often plagues organizations embracing cloud technology. December 2023 — Managing risk in cloud adoption: Christian, Sarah, and guest Gayatri Prakash, Vice President of Compliance at CloudBees, explore the art of managing risk in cloud adoption. January 2024 — Cost optimization: Maximizing cloud value: Dive into the financial aspect of cloud adoption. Cost optimization isn't just a matter for the finance department — it's a strategic imperative for the C-suite. February 2024 — Security in the cloud: Adeel, Sarah, and guest Irfaan Santoe, Chief Information Security Officer at Aegon, discuss the layers of protection your organization needs to implement a robust security posture. March 2024 — Compliance and the cloud: Adeel, Sarah, and guest Peter Lefkowitz, Vice President of Chief Security and Trust Officer at Cloud Software Group, explore the intricate intersection of compliance and cloud technology. Episode 1: Committing to the cloud In the series’ debut episode, Committing to the cloud, we get to the question at the heart of the series: Why should C-suite leaders care about cloud adoption? You can listen to the episode now on your favorite podcast platform, and we’ve included links to key parts of the show below. Successful cloud adoption goes far beyond moving data and applications to dynamic environments; it's about transforming the way we do business. It's not just about technology; it's about strategy, innovation, and staying ahead of the curve. In this episode, Adeel, Sarah, and Christian Break down why embracing the cloud is essential and provide digestible takeaways for leaders to act on. They start by introducing the cloud operating model and explaining why it’s so important to cloud success (01:09), finding out where you are and how can you get to where you want to be on your cloud journey (08:22), offer tips on how to find the best cloud talent (14:33), discuss what it means to achieve maturity in the cloud (20:18), talk about digital transformation and the role of the platform team (26:07), and conclude by sharing three steps to getting started with your journey to adopting a cloud operating model (33:34). Subscribe to Navigating the Cloud for C-Suites To avoid missing a single episode of Navigating the Cloud for C-Suites, subscribe to the series on your favorite podcast platform as we journey toward a brighter and more efficient future in the cloud together: Subscribe to Navigating the Cloud for C-Suites on Apple Podcasts Subscribe to Navigating the Cloud for C-Suites on Google Podcasts Subscribe to Navigating the Cloud for C-Suites on Spotify Subscribe to the Navigating the Cloud for C-Suites RSS feed View the full article

HashiCorp Terraform is a versatile infrastructure-as-code tool that empowers users to define and provision infrastructure resources with ease using a declarative configuration language. While Terraform provides solutions for converting strings to lists, there are occasions where you’ll need to do the opposite: convert a list into a string. This can be particularly beneficial when configuring […] The article Terraform: Convert String to List (join function) appeared first on Build5Nines. View the full article

At HashiDays in June, we announced the public beta for a new offering on the HashiCorp Cloud Platform: HCP Vault Secrets is a powerful new tool designed to identify, control, and remediate secrets sprawl and centralize secrets management by synchronizing secrets across platforms. Secrets are unlike traditional credentials because they are leveraged by developers, applications, services, infrastructure, and platforms to establish trusted identities. As organizations distribute their workloads across more platforms they lose centralized control over identity security and become more exposed to secrets sprawl. This post reviews the secrets sync beta feature released as part of Vault Enterprise 1.15 and discusses how it will help organizations corral secrets sprawl and regain centralized control and visibility of their secrets... View the full article

Microsoft’s primary method for managing identities by workload has been Pod identity. However, the company’s Pod identity technology and workflows are being deprecated and will not be supported after December 2023. Microsoft will continue to support identity workflows with its Workload Identity Federation (WIF) product, which was released as part of Vault 1.15 to deepen Vault’s integration with MS Azure. In this post, we’ll take a deeper look at the advantages and caveats of WIF... View the full article

HashiCorp Terraform is a powerful infrastructure-as-code tool that allows you to define and provision infrastructure resources using a declarative configuration language. When working with Terraform, you may encounter situations where you need to convert a string into a list. This can be especially useful when dealing with configurations or data retrieved from external sources. In […] The article Terraform: Convert String to List (tolist, split functions) appeared first on Build5Nines. View the full article

HashiCorp is pleased to announce the general availability of Vault 1.15. HashiCorp Vault provides secrets management, data encryption, identity management, and other workflow capabilities for applications on any infrastructure. Vault 1.15 focuses on Vault’s core secrets workflows as well as team workflows, integrations, and visibility. Key additions in this release include: Certificate Issuance External Policy Service (CIEPS) UI enhancements Azure SDK Workload Identity Federation (WIF) support Vault Secrets Operator (VSO) enhancements Vault Enterprise seal high availability (beta) Vault Enterprise secrets sync (beta) Event monitoring (beta) Let’s take a closer look... View the full article

A GitOps tool like Argo CD can help centralize the automation, installation, and configuration of services onto multiple Kubernetes clusters. Rather than apply changes using a Kubernetes CLI or CI/CD, a GitOps workflow detects changes in version control and applies the changes automatically in the cluster. You can use a GitOps workflow to deploy and manage changes to a Consul cluster, while orchestrating the configuration of Consul service mesh for peering, network policy, and gateways. This approach to managing your Consul cluster and configuration has two benefits. First, a GitOps tool handles the order-of-operations and automation of cluster updates before configuration updates. Second, your Consul configuration uses version control as a source of truth that GitOps enforces across multiple Kubernetes clusters. This post demonstrates a GitOps workflow for deploying a Consul cluster, configuring its service mesh, and upgrading its server with Argo CD. Argo CD annotations for sync waves and resource hooks enable orchestration of Consul cluster deployment followed by service mesh configuration with Custom Resource Definitions (CRDs). Updating a Consul cluster on Kubernetes involves opening a pull request with changes to Helm chart values or CRDs and merging it. Argo CD synchronizes the configuration to match version control and handles the order of operations when applying the changes... View the full article

Since the beginning of the project, HashiCorp Packer has supported extending its capabilities through plugins. These plugins are built alongside community contributors and partners to help Packer support building images for many cloud providers and hypervisors. In the past, to help Packer users get up and running quickly, popular plugins were bundled into the main Packer binary. This had advantages, notably that users did not have to install plugins separately in order to use them. However, as the plugin system grew, bundling all plugins introduced maintenance issues... View the full article

On August 10, 2023, HashiCorp announced that after ~9 years of Terraform being open source under the MPL v2 license, they were suddenly switching it to a non open source BSL v1.1 license. We believe the BSL license is a poison pill for Terraform which threatens the entire community and ecosystem, and in this blog post, we’ll introduce OpenTF, our plan for keeping Terraform open source—forever ... Full blog post: https://blog.gruntwork.io/the-future-of-terraform-must-be-open-ab0b9ba65bca

A community that embraced open source Terraform software has called upon HashiCorp to reverse license changes that limit software usage. View the full article

The way organizations provision infrastructure has significantly changed as they move from dedicated servers to capacity on-demand in the cloud. Homogeneous blueprints of infrastructure owned by IT have grown inefficient and outdated. In the cloud, infrastructure resources must be readily available across a variety of providers. While infrastructure automation underpins the move to the cloud and the overall modernization of application delivery, this shift exposes organizations to a diverse new set of security challenges. According to the 2023 HashiCorp State of the Cloud Strategy Survey, security ranked as the #1 enabler of multi-cloud success. Security is important — everyone knows how crucial it is to stay on top of the rapidly changing cloud security landscape. But to do so, organizations must address shortcomings in their traditional provisioning processes ... View the full article

HashiCorp this week acquired BluBracket to add a set of static secrets discovery tools to its portfolio.View the full article