dsk-iac/aws_middle/vault/README.md

Vault Auto-unseal using AWS KMS

These assets are provided to perform the tasks described in the Vault Auto-unseal with AWS KMS guide.

---

Demo Steps

Setup

1. Set this location as your working directory
2. Set your AWS credentials as environment variables: AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY
3. Set Vault Enterprise URL in a file named terraform.tfvars (see terraform.tfvars.example)

Commands Cheat Sheet

# Pull necessary plugins
$ terraform init

$ terraform plan

# Output provides the SSH instruction
$ terraform apply

#----------------------------------

# Clean up...
$ terraform destroy -force
$ rm -rf .terraform terraform.tfstate* private.key