Vault

Create a privileged user

Connect in SSH to the Vault VM forwarding the 8200 port with ssh vault_vm_ip -L 8200:localhost:8200

The port forwarding is needed to access the Vault web ui

Take the auth_token under /root/vault

Navigate to http://localhost:8200. Under access choose ldap and in the users tab add a new one. The name must match the ldap username and the groups should be only adm to get all privileges.

Unseal the vault

Connect via SSH and go to root folder with user root. Go inside the seal folder you will find 5 keys, you must use 3 of this to unseal the vault. now you have to export the default URL and do the really unseal for vault with command vault operator unsealand one of the keys. you must repeat this last action for three times

sudo su
cd /root/seal
export VAULT_ADDR=http://127.0.0.1:8200
vault operator unseal <first key>
vault operator unseal <second key>
vault operator unseal <third key>

Vault

Table of Contents

Create a privileged user #

Unseal the vault #

Create a privileged user

Unseal the vault