Tech

HashiCorp works with Microsoft for the Consul Service on Azure

HashiCorp, a provider of infrastructure-as-code services and tools for multi-cloud infrastructure, has released version 1.5 of its open source tool Vault, which can be used to manage sensitive information. The company has also announced that the fully managed Consul networking service, in collaboration with Microsoft, is now available on Azure.

New in Vault 1.5 are among other things Resource Quotas, extended support of the Kubernetes helmet charts for Red Hat OpenShift as well as a Splunk app for the monitoring of telemetry and log data.

Resource quotas make it easier for Vault administrators to control how applications access the resources in Vault in order to better secure the storage requirements, stability and network of the Vault environment – for example, against DDoS attacks (Distributed Denial of Service) ). With the function Rate Limit Quotas For example, the number of requests per second (RPS) can be limited. Vault Enterprise Edition users are also available Lease Count Quotas are available that define the maximum allowable quotas for the number of leases that can be created for a system or a mount point.

In order to install and use Vault Enterprise on Red Hat’s OpenShift 4.x, HashiCorp has revised the Vault helmet charts. As a result, users can now use annotations via sidecar injection to inject secrets into applications that do not offer native support for Vault. Vault Enterprise customers can use the new Splunk app to monitor the tool even more comprehensively, particularly from an operational and security perspective. The app, created in collaboration with Splunk, offers a number of pre-made dashboards and a revised performance tuning guide.

Other new features at Vault include built-in memory and changes to the replica user interface. VMware and NetApp have now also Vault certified, making the tool compatible with VMware Sphere and NetApp ONTAP. Vault can be used as external information management and accesses the built-in Key Management Interoperability Protocol (KMIP).

With the HashiCorp Consul Service (HCS), network settings can be configured automatically, services discovered (Service Discovery) and service-to-service communication can be made secure across the cloud or across runtimes. HCS on Azure is intended to enable companies to deploy consul clusters managed by HashiCorp directly in the Azure portal and to direct traffic via Azure Kubernetes Services or an Azure application environment.

From the perspective of Microsoft’s Vice President Corey Sanders, HashiCorp’s Consul-Technik HCS on Azure opens up cloud services such as service discovery and service mesh in the Microsoft cloud to corporate customers. The new offering is designed to enable companies to deploy, manage and update their consul installations as a service mesh without operational overhead, adds Armon Dadgar, co-founder and CTO of HashiCorp.

The fully managed service apparently transfers the operational load through the Consul control level to HashiCorp and allows users to automatically discover and locate other services running in the same environment. Consul apparently offers a “health check” for all identified services in real time. In addition, according to the announcement, HCS on Azure is a cross-platform service mesh, i.e. a dedicated infrastructure layer for service-to-service communication between microservices.

More Details on the release of Vault 1.5 can be found in the announcement in the company blog. Existing users who are planning an update, can orient themselves in the upgrade area of ​​the Vault project. Further information keeps the project homepage ready. Interested parties can visit HCS on Azure read the announcement in the HashiCorp company blog, Microsoft has parallel posted an announcement on the Azure blog and the new service there is also an HCS-on-Azure website. To get started there is a Tutorial on how to deploy services on Azure with HCS. Four weeks ago heise developer gave an overview of the latest innovations in the infrastructure portfolio of HashiCorp, the future cooperation with Microsoft was already in the room.


(sih)

To home page

.