Episode
Improve your security with Dynamic Provider Credentials for Terraform Cloud
with April Edwards, Dan Barr
Dynamic provider credentials in Terraform Cloud automates the creation of short-lived credentials for access to Azure. This eliminates the risk and effort involved in handling and rotating static credentials for Terraform runs.
Using static credentials in your workspaces to authenticate providers presents a security risk, even if you rotate your credentials regularly. Dynamic provider credentials improve your security posture by letting you provision new, temporary credentials for each run. This capability is available for all tiers of Terraform Cloud and it's also available now in Terraform Enterprise.
Chapters
- 00:52 - Challenges with static credentials
- 03:06 - What are dynamic provider credentials?
- 04:23 - Demo: bootstrap the trust relationship
- 06:48 - Demo: workspace configuration
- 08:14 - How the process works
- 09:04 - End result and summary
Recommended resources
- Sign up for Terraform Cloud for free
- Blog: Dynamic provider credentials now generally available for Terraform Cloud
- Documentation
- Hands-on tutorial: Authenticate Providers with Dynamic Credentials
- Setup examples for Azure
Related episodes
Connect
- April Edwards | Twitter: @TheAprilEdwards | LinkedIn: in/azureapril
- Dan Barr | Twitter: @vDanBarr | LinkedIn: in/vdanbarr/
- Azure DevOps | Twitter: @AzureDevOps
- HashiCorp | Twitter: @HashiCorp | LinkedIn: company/hashicorp/ | YouTube: @HashiCorp
Dynamic provider credentials in Terraform Cloud automates the creation of short-lived credentials for access to Azure. This eliminates the risk and effort involved in handling and rotating static credentials for Terraform runs.
Using static credentials in your workspaces to authenticate providers presents a security risk, even if you rotate your credentials regularly. Dynamic provider credentials improve your security posture by letting you provision new, temporary credentials for each run. This capability is available for all tiers of Terraform Cloud and it's also available now in Terraform Enterprise.
Chapters
- 00:52 - Challenges with static credentials
- 03:06 - What are dynamic provider credentials?
- 04:23 - Demo: bootstrap the trust relationship
- 06:48 - Demo: workspace configuration
- 08:14 - How the process works
- 09:04 - End result and summary
Recommended resources
- Sign up for Terraform Cloud for free
- Blog: Dynamic provider credentials now generally available for Terraform Cloud
- Documentation
- Hands-on tutorial: Authenticate Providers with Dynamic Credentials
- Setup examples for Azure
Related episodes
Connect
- April Edwards | Twitter: @TheAprilEdwards | LinkedIn: in/azureapril
- Dan Barr | Twitter: @vDanBarr | LinkedIn: in/vdanbarr/
- Azure DevOps | Twitter: @AzureDevOps
- HashiCorp | Twitter: @HashiCorp | LinkedIn: company/hashicorp/ | YouTube: @HashiCorp
Have feedback? Submit an issue here.