Install Vault using RPM repository instead of Docker (!3) · Merge requests · ics-ansible-galaxy / ics-ans-role-hashicorp-vault

Anders Harrisson requested to merge andersharrisson/ics-ans-role-hashicorp-vault:master into master Jan 31, 2022

In accordance with the Hashicorp Vault Production Hardening recommendations:

Single Tenancy. Vault should be the only main process running on a machine. This reduces the risk that another process running on the same machine is compromised and can interact with Vault. Similarly, running on bare metal should be preferred to a VM, and running in a VM should be preferred to running in a container.

See: https://learn.hashicorp.com/tutorials/vault/production-hardening

Note that this also moves from Vagrant/Virtualbox driver to Docker driver for the Molecule tests.

JIRA INFRA-4749

Admin message

Install Vault using RPM repository instead of Docker

Merge request reports