ctome
/
tldr
mirror of https://github.com/CrimsonTome/tldr.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
tldr/pages/common/vault.md

690 B
Raw Blame History

vault

A CLI to interact with HashiCorp Vault.

  • Create a new vault, requiring at least 2 out of 5 keyshares to unseal:

vault init -key-shares={{5}} -key-threshold={{2}}

  • Unseal the vault by providing one of the keyshares. Repeat with necessary key-shares until unsealed:

vault unseal {{key-share-x}}

  • Authenticate client against vault, using an authentication token:

vault auth {{authentication-token}}

  • Store a new secret in the vault using the generic back-end called secret:

vault write secret/{{hello}} value={{world}}

  • Read a value from the vault using the generic back-end called secret:

vault read secret/{{hello}}

  • Seal the vault again:

vault seal