October 2017

padlock

Hashicorp, Vault October 11, 2017

Managing Vault Tokens – Hashicorp Vault

The default authentication method in Vault is Tokens.  Anytime you authenticate, regardless of the method, vault is creating a token, storing it somewhere, then using it for future interactions.  This article will discuss the process for managing your vault tokens using the vault CLI Authentication using a token When you first install Vault, you will be given a default root token.  You can use this token to authenticate using the vault auth command:

Example: Read more […]

hard disk platter

NAS, Openfiler, SAN, Storage October 11, 2017

Configuring OpenFiler Tutorial

Today’s video outlines how to configure Openfiler and continues where I left off from the installing OpenFiler video. This article assumes that you have already already installed Openfiler. For instructions on how to do that see our video on installing openfiler.**Note: This information came from a previous site of ours, so the information may be out of dateToday’s video covers: Setting up the OpenFiler LDAP Server (Part 1) Creating Users and Groups (Part 1) Setting up Network ACL’s (Part Read more […]

finger on flow chart

Citrix, Virtualization, Xenserver October 11, 2017

How to Install Citrix Xenserver

This article is content I migrated from a previous site I had created. The information may be a bit out of dateIn this video I explain where to get Citrix Xenserver and how to install it. I use a Virtualbox Virtual Machine in my demonstration, however you would not want to run Xenserver in a Virtual Machine in your production environment. I can’t really think of a situation where you would want to do that.I hope you enjoy the video, and be sure to send me any questions you have either by commenting Read more […]

network cables

CIFS, iSCSI, Linux, NFS, Redhat, SMB, Storage, Ubuntu, Windows October 10, 2017

Connecting to storage Systems using iSCSI, NFS, and CIFS (SMB)

As there are a variety of tasks you may need to achieve, there are many different ways to connect to your storage system. Each operating system has differing methods for utilizing these protocols, and different operating systems will perform differently with each protocol. For the purpose of this article we are going to focus on two methods of connecting to storage; LUN’s and File Shares. In my examples I will be using Open Filer as the storage device, then various Linux and Windows editions to Read more […]

code

Linux, Ubuntu, Virtual Box, Virtualization October 10, 2017

Installing Virtual Box and Creating an Ubuntu virtual machine

This is content I migrated from a previous website, so some of the information is a little out of date. But the overall processes should still be the same. Virtual Box is a very simple virtual machine package which can be installed on Linux, Mac, Windows, and Solaris. It is open source, so you can compile it to run on other systems as well. In this tutorial video I will cover how to install virtual box and install your first virtual machine. The process of creating the virtual machine is does not Read more […]

door lock

Hashicorp, Vault October 10, 2017

Hashicorp Vault – Creating a new root Token

The best practices for Hashicorp Vault are to destroy your default root token after you have finished the initial setup of Vault. However, you will still find times when you need a new root token for certain advanced functions.This article describes how to create a new root token using your vault unseal keys.Instructions were found here: https://www.hashicorp.com/blog/vault-0-5/Generate One time Password:First we will use the vault generate-root command with the genopt argument. This will generate Read more […]

lock

certificate, Hashicorp, LDAP, Vault October 10, 2017

Hashicorp Vault – Configure Authentification

There are many authentication methods for vault. This article descibes how to configure LDAP authentication and Userpass Authentication LDAP Authentication: The following command will configure LDAP to point at a domain controller named mydomaincontroller.mydomain.com. It will then search the search base for groups to the top of mydomain.com domain: vault write auth/ldap/config url=”ldap://mydomaincontroller.mydomain.com:389″ userattr=sAMAccountName userdn=“dc=mydomain,dc=com” groupdn=“dc=mydomain,dc=com” Read more […]

padlock

Hashicorp, Vault October 10, 2017

Hashicorp Vault – Rekey or Unseal Vault

After the Hashicorp Vault service has been restarted, the password vault is in a sealed state. This means that the encryption keys are not in memory, and the encrypted database on the disk cannot be read. More on this topic can be read here: https://www.vaultproject.io/docs/concepts/seal.htmlThis article will discuss the process for unsealing and re-keying the vault.To unseal the vaultGenerally to unseal the vault you will need at least two unseal keys. Whoever created the vault, or last re-keyed Read more […]

padlock green door chain

Hashicorp, Vault October 10, 2017

Hashicorp Vault – Reading and Writing Secrets to Vault

This article will describe how to read and write secrets to vault using the vault CLI and CURL. These instructions are assuming you are on either Linux or Mac OSX. Later we will add instructions for windows. That said, most of the Vault CLI commands should work fine on windows as well.Before you can proceed, you need to be sure you have authenticated against vault. For details on that, you can check out one of our articles about configuring vault authentication. To use the CURL commands you also Read more […]

chain

Hashicorp, Vault October 10, 2017

Hashicorp Vault – Install Client CLI and GUI

Hashicorp Vault has a variety of ways to access it. You can access it via a CLI client, via the rest api/CURL, and via a third party GUI client. This article will discuss how to setup the CLI and one of the 3rd party GUI’s available on Github.Installing the CLI ClientVault has a client for a variety of platforms. Lets start by downloading the appropriate client for your platform from here:https://www.vaultproject.io/downloads.htmlOSX/MacOS:The installation on OSX/MacOS is very easy. There are Read more […]