On account of cloud security
How ABN-AMRO uses HashiCorp Vault to automate secrets management and deliver huge gains for its growing product portfolio
Challenges of multicloud security
The transition from traditional on-premises datacenters and environments to dynamic, cloud infrastructure is complex and introduces new challenges for enterprise security.
There are more systems to manage, more endpoints to monitor, more networks to connect, and more people that need access. The potential for a breach increases significantly, and it is only a matter of time without the right security posture.
Achieving zero trust security with HashiCorp and Microsoft Azure
HashiCorp Consul, Vault, Boundary, and Microsoft Azure have partnered together to enhance zero trust security initiatives at all levels of dynamic infrastructure with identity-based security.
HashiCorp Products used
- Vault
- Boundary
- Consul
Outcomes
- 1Together our two organizations offer complimentary solutions that address making zero trust security a reality regardless of where organizations are in their journey to the cloud.
- 2HashiCorp and Microsoft Azure ensure that each access request (across clouds, on-prem, and low-trust networks) is authenticated, encrypted, and authorized with the least amount of privilege.
HashiCorp and Microsoft share a vision about how to improve security posture while expanding access to critical resources and infrastructure in a multi-cloud, remote world. We place a strong emphasis on our relationship with HashiCorp since both companies embrace multi-cloud automation and security with such rigor.
SUE BOHN
VICE PRESIDENT, IDENTITY AND NETWORK ACCESS DIVISION, MICROSOFT
VICE PRESIDENT, IDENTITY AND NETWORK ACCESS DIVISION, MICROSOFT
Enabling identity-based security across environments
HashiCorp solution
Zero trust security is predicated on securing everything based on trusted identities. HashiCorp has identified four foundational categories for identity-driven controls across all layers of a dynamic network based on identity:
-
Machine authentication and authorization with Vault focuses on proving a machine’s identity and authorizing what a machine is enabled to do
-
Machine-to-machine access with Consul is about controlling which machines are allowed to speak to one another
-
Human-to-machine access with Boundary controls which humans are allowed to speak to which machines
-
Human authentication and authorization with third-party identity tools to enable single sign-on
HashiCorp offers just-in-time access to secrets (tokens, passwords, certificates), secure network connectivity, and remote access solutions for machine- and human-to-machine authentication and authorization.
Microsoft Azure solution
Microsoft Azure has identified five of the most impactful scenarios that agencies should build towards to implement zero trust architectures:
-
Cloud-ready authentication apps
-
Web apps with legacy authentication
-
Remote server administration
-
Segment cloud administration
-
Network micro-segmentation
Microsoft Azure’s trusted risk-based policies, identity and access management, SSO, and native security capabilities.
On the road again
Cars, Kubernetes, and HashiCorp Consul. How Mercedes-Benz delivers on service networking to accelerate delivery of its next-gen connected vehicles.
Accelerating the path to modern banking
Peru’s biggest bank uses HashiCorp Terraform and Vault to expedite delivery of digital banking solutions to historically underserved communities.
Learn more about how to implement zero trust security
Read the HashiCorp and Microsoft Azure: Delivering Zero Trust Security eBook
Download eBook
