HashiCorp Certified: Vault Operations Professional Training

Duration: Hours

Enquiry


    Category:

    Training Mode: Online

    Description

    HashiCorp Certified: Vault Operations

    The Vault Operations Professional exam is designed for Cloud Engineers specializing in deploying, configuring, managing, and monitoring HashiCorp Vault. Well-qualified candidates hold the Vault Associate Certification (or possess equivalent knowledge). Moreover, they have extensive experience operating Vault in production environments. Additionally, they possess the ability to thoroughly evaluate Vault Enterprise functionality and use cases. Certification holders have demonstrated they possess the skills, knowledge, and competency required to perform the Vault operational tasks outlined in the objectives.

    Prerequisites

    Recommendation for Exam Order:

    We strongly recommend passing the associate-level Vault exam before considering the professional-level exam. However, practitioners who are already experienced with Vault operations in a production environment—and understand the concepts covered in the associate exam—may find themselves sufficiently prepared to successfully pass the professional-level exam.

    HashiCorp Certified: Vault Associate Certification (recommended)

      1. Linux skills such as listing and editing files via command terminal
      2. Understanding of IP networking
      3. Experience with Public Key Infrastructure (PKI), including PGP and TLS
      4. Information security fundamentals such as network security and RBAC
      5. Understand the concepts and functionality of infrastructure running in containers including starting and stopping services, and reading logs

    Product Version Tested

    Vault 1.13.0 and higher

    Renewing your Vault Professional certification

    To renew your Vault Professional certification, you will need to take and pass the Vault Professional exam. If you hold an unexpired Vault Professional certification, you can take the exam again starting 18 months after your previous exam date. Upon passing the exam, the expiration date on your credentials will be extended. Conversely, if you hold an expired Vault Professional certification, you are eligible to recertify at any time. Upon passing the exam again, you will receive a new, separate set of credentials with a new expiration date.

    Exam Details

    1. Assessment Type* Lab-based and multiple choice
    2. Format Online proctored
    3. Duration 4 hours; 15-minute break included
    4. Price USD 295
    5. plus locally applicable taxes and fees
    6. Includes free retake
    7. Language English
    8. Expiration 2 years

    Assessment Type

    This exam is primarily lab-based, in addition to a shorter multiple-choice section. During the lab scenarios, exam-takers will be tested on performing real-world Vault operational tasks on the command line. The Vault UI and API can also be used where applicable, and exam-takers will have access to the Vault and Vault API documentation.

    Preparing for the Exam

    Visit the Prepare for Vault Operations Pro Exam page on HashiCorp Learn to initiate your exam prep. Once there, you will find an overview, a study guide, and a review guide. The study guide includes valuable tips and example questions to aid your preparation. Additionally, the review guide provides a direct mapping of documentation and tutorials to study for each exam objective.

    Exam Objectives

    Create a working Vault server configuration given a scenario

    1. Enable and configure secret engines
    2. Practice production hardening
    3. Auto unseal Vault
    4. Implement integrated storage for open source and Enterprise Vault
    5. Enable and configure authentication methods
    6. Practice secure Vault initialization
    7. Regenerate a root token
    8. Rekey Vault and rotate encryption keys

    Monitor a Vault environment

    1. Monitor and understand Vault telemetry
    2. Monitor and understand Vault audit logs
    3. Monitor and understand Vault operational logs

    Employ the Vault security model

    1. Describe the secure introduction of Vault clients
    2. Describe the security implications of running Vault in Kubernetes

    Build fault-tolerant Vault environments

    1. Configure a highly available (HA) cluster
    2. [Vault Enterprise] Enable and configure disaster recovery (DR) replication
    3. [Vault Enterprise] Promote a secondary cluster

    Understand the hardware security module (HSM) integration

    1.  [Vault Enterprise] Describe the benefits of auto unsealing with HSM
    2.  [Vault Enterprise] Describe the benefits and use cases of seal wrap (PKCS#11)

    Scale Vault for performance

    1. Use batch tokens
    2. [Vault Enterprise] Describe the use cases of performance standby nodes
    3. [Vault Enterprise] Enable and configure performance replication
    4. [Vault Enterprise] Create a path filter

    Configure access control

    1. Interpret Vault identity entities and groups
    2. Write, deploy, and troubleshoot ACL policies
    3. [Vault Enterprise] Understand Sentinel policies
    4. [Vault Enterprise] Define control groups and describe their basic workflow
    5. [Vault Enterprise] Describe and interpret multi-tenancy with namespaces

    Configure Vault Agent

    1. securely configure auto-auth and token sink
    2. Configure templating

    TABLE OF CONTENTS

    1. Free Chapter
    2. Course Introduction
    3. Create a Working Vault Server Configuration Given a Scenario
    4. Monitor a Vault Environment
    5. Employ the Vault Security Model
    6. Build Fault-Tolerant Vault Environments
    7. Understand the Hardware Security Module (HSM) Integration
    8. Scale Vault for Performance
    9. Configure Access Control
    10. Configure Vault Agent
    11. Exam Experience and Expectations

    For additional information regarding this training, please visit here.

    Contact Locus IT support team for further training details.

    Enquiry


      Category: