Это видео недоступно.
Сожалеем об этом.
Terraform AWS Secrets handling
HTML-код
- Опубликовано: 15 авг 2024
- ▬▬▬▬▬▬ ⭐️ Instruction's Guides ⭐️ ▬▬▬▬▬▬
Terraform and AWS credentials handling? - jhooq.com/terr...
If you are new to terraform or maybe you have been using the terraform for quite some time then might have felt the need to manage your AWS Credentials inside your terraform file.
In this session we will go through the different ways to set up your AWS Credentials so that you do not have to re-configure the AWS Credentials every time, also we will pay attention on what are the most secure ways to handle your AWS Credentials
Here are three different ways of handling AWS Credentials -
1. Hard coding AWS Credentials(ACCESS_KEY, SECRET_KEY) inside terraform file (*Not recommended)
2. Using /.aws/credentials file along with terraform’s shared_credentials_file settings
3. Configure AWS Credentials as environment variables
▬▬▬▬▬▬ ⭐️ 🕘Timestamps ⭐️ ▬▬▬▬▬▬
0:00 - Intro
1:39 - Hard coding AWS Credentials(ACCESS_KEY, SECRET_KEY)
4:25 - Using shared_credentials_file settings
8:06 - Configure AWS Credentials as environment variables
To learn more on DevOps visit - jhooq.com/
For more official documentation refer to - terraform.io/
Disclaimer/Policy: All the content/instructions are solely mine. The source is completely open-source.
Video is copyrighted and can not be re-distributed on any platform.
#terraform #devops #aws #cloud
you terraform videos are one of the best in RUclips, thanks for what you doing
Glad you enjoy it!
You are a DevOps GEM. The beauty of your videos all are documented which I can refer quickly and practise seamlessly . GOD BLESS YOU Raahul.
You are a welcome anil, enjoy learning
your videos are very helpful for real time time , thank you
Glad you like them!
Tq for your Support...it's very clear. And so cool....can you make a video on configmap and Devsecops concepts...
Thanks. It would also be worth mentioning the order of processing if you have the credentials stored in more than one location
Hi, can you explain how to make terraform instead of aws system manager for patching?
You are question is bit confusion can you elaborate a bit more what is your scenario?
Great explanation; thank you sir. Subscribed.
Thanks for the sub!
So everytime we need to export these access key and secret access key?
for an example my manager don't want to give me these credential because i can leak this confidential data, and he wanted me to create some resources on aws cloud, so how can we do that
how to search path of /.aws/credential file?
1. in our personal windows laptop
2. in our aws ec2 machine with amazonlinux2 os
Refer to this doc for searching the credentials file - docs.aws.amazon.com/sdkref/latest/guide/file-location.html
@@RahulWagh thank you
Currently we are using aws keys on terraform but we need to export from jenkins how to do that
But where are we going to store our credential file for that?Shall we use vault?
It would be helpful if you take the other case of creating a terraform script to store the secrets like password in secret manager without hardcoding
Your terraform videos are good and best part is documentation. I have a question on best practice on following:
Have 3 separated environments- Dev, qa, prod
In Dev : 4 RDS instances
In qa: 2 RDS
Prod : 2 RDS
RDS in an environment should not impact another RDS while any config changes.
What would be the best way to manage such cases with minimum operational work but want to follow DRY approach?
Don’t want to use terragrunt or any other tools
Any other method other than these 3 sir.?? Because these are also not approved in my project
I would recommend using hashicorp vault for managing the secrets. Here is the blog post which you can follow - jhooq.com/hashi-vault-aws-secret-terraform/
I am getting provider aws error in line one..after terraform plan
Did you run terraforming init before?
can u please make a video on how can handle the keys or service account file in terraform cloud
I will make a note of the topic, once i start preparing on terraform cloud then i will make sure creae one on keys and service account file
Please explain about production ready env to use the vault credentials as you said.
I need to prepare a separate session for that it will be a long one
Thanks a lot sir, your explanation is very understandable for beginners
How to create and store secrets in secret manager
Hello Mr Rahul, so how is different than `Profile` ?
Profile you need to use when you have multiple environments like dev qa stg
@@RahulWagh thank you. Where can know more on the Environment variables Exported from Terraform?
How can I add env from jenkins sir?
There is provision to add secrets and env variables in jenkins which you can use
Can you explain about terragrunt
Here is the guide if you are interested- jhooq.com/terragrunt-guide/ , but I am planning to prepare a session next week on terraform so keep visiting the channel
@@RahulWagh Thanks I have seen the Terragrunt tutorial and it was very helpful. I am commenting here as it might relate as well if you can please explain functional difference or the application of Terraspace compared to Terragrunt?
thank you