Vault by HashiCorp VS KeyStore Explorer

Before you start, just a friendly reminder that HashiQube by default runs Nomad, Vault, and Consul on Docker. In addition, we’ll be deploying 21 job specs to Nomad. This means that we’ll need a decent amount of CPU and RAM, so Please make sure that you have enough resources allocated in your Docker desktop. For reference, I’m running an M1 Macbook Pro with 8 cores and 32 GB RAM. My Docker Desktop Resource... - Source: dev.to / over 1 year ago

When running cron jobs on Amazon EC2, you can, for example, use a secrets store like Vault. With Vault, your cron jobs can dynamically get the credentials they need. The secrets don’t get stored on the machine that’s running the cron jobs, and if you change a secret, the cron jobs will automatically receive that change. The downside of implementing a solution like Vault, however, is the overhead of managing the... - Source: dev.to / about 2 years ago

Vaultproject.io handles secrets management, so dynamic policies deal with database creds etc. "Manual" creds are stored in 1password or lastpass and added manually to Vault if it needs rebuilding. Source: about 2 years ago

It's all in the blog series, including sample configuration, but it's vaultproject.io and it allows you to do everything from managing simple secrets to auto-rotation of database credentials or even run your own KPI setup. Source: over 2 years ago

Our team is experimenting with Hashicorp Vault as our new credentials management solution. Thanks to the offical Vault Helm Chart, we are able to get an almost production-ready vault cluster running on our Kubernetes cluster with minimal effort. - Source: dev.to / almost 3 years ago

Yes, that's clear but you need the private key to create a CSR. I'm guessing since you are using a Java app you should either have a JKS (old fashioned) or a P12 (pkcs12) keystore, one of those should contain the private key, you can use keystore explorer to extract the data. Https://keystore-explorer.org/. Source: about 1 year ago

Personally, I've also had decent experiences with Keystore Explorer: https://keystore-explorer.org/ I actually wrote about using it on my blog, which has plenty of screenshots: https://blog.kronis.dev/tutorials/lets-run-our-own-ca. - Source: Hacker News / over 1 year ago

Then let me tell you about keystore explorer https://keystore-explorer.org/ which will make your life a lot easier (and less chance that there are more then 1 keys inside your keystore. Source: over 1 year ago

I... Kind of like it? Not the fact that using such a GUI would be almost impossible, like the humorous example of an "engineer oriented UI" in the Silicon Valley series https://www.reddit.com/r/SiliconValleyHBO/comments/4nvvnl/pied_pipers_easytouse_tools/ which might be confusing for most people. But rather the fact that all of the complexity the software has is laid bare, so that nobody could mistakenly assume... - Source: Hacker News / almost 2 years ago

I suggest trying KeyStore Explorer. This tool supports most common certificate and wallet files. I have used in multiple occasions when standard tools couldn't do the task. Source: almost 2 years ago