If you are responsible for setting up and maintaining a Vault cluster using Consul as storage backend, get started here.

Deploy Cluster with Consul

Getting Started

Getting Started with HCP Vault

Getting Started with Vault UI

Get Started

Advanced Data Protection

Data Encryption

Database Credential Rotation

Key Management

Secrets Management

Use Cases

Prepare for Vault Associate Exam

Prepare for Vault Operations Pro Exam

Certification Prep

Deploy Cluster with Integrated Storage

Vault Enterprise

HCP Vault

HCP Vault Monitoring

Monitoring & Troubleshooting

Recommended Patterns

Standard Operating Procedures

Production

App Integration

Custom Secrets Engines

HashiCorp Product Integrations

Kubernetes

Vault Agent

Integrations

Auth Methods

Auto Unseal

Operations Fundamentals

Integrated Storage

Policies

Vault Tokens

Operations

This guide describes architectural best practices for implementing Vault using the
Consul storage backend.

Vault with Consul Storage Reference Architecture

This guide describes patterns and practices for multi-cluster Vault architectures.

Vault Multi-Cluster Architecture Guide

This guide covers steps to install and configure a single HashiCorp Vault
cluster according to the Vault with Consul Storage Reference Architecture.

Vault with Consul Storage Deployment Guide

This tutorial provides guidance on best practices for a production hardened deployment of HashiCorp Vault.

Production Hardening

A step-by-step example to set up a Highly Available (HA) Vault cluster with
Consul as its storage backend.

Vault High Availability with Consul

In this tutorial, we'll show an example of how to use Terraform to provision an instance that can utilize an encryption key from AWS Key Management Services to unseal Vault.

Auto-unseal using AWS KMS

This tutorial demonstrates an example for enabling Auto-unseal with Azure Key Vault.

Auto-unseal using Azure Key Vault

This tutorial demonstrates an example for enabling Auto-unseal with GCP Cloud KMS.

Auto-unseal using GCP Cloud KMS

An example for enabling Auto-unseal with Vault's Transit Secrets Engine.

Auto-unseal using Transit Secrets Engine

This tutorial demonstrates how Vault's seal wrap feature works to encrypt your secrets leveraging FIPS 140-2 certified HSM.

HSM Integration - Seal Wrap

This tutorial demonstrates step-by-step instruction of setting up disaster
recovery (DR) replication.

Disaster Recovery Replication Setup

This tutorial demonstrates how to selectively filter out secret mounts from being replicated across datacenters with Performance Replication.

Infrastructure

Security

Applications

Networking

cloud