Securely accessing Google Cloud from Terraform Cloud

During my session, I'll cover how you can securely access Google Cloud from Terraform Cloud. Online I see a lot of tutorials about using Terraform Cloud with long-lived service account keys in order to connect to Google Cloud. Service accounts keys are easy to use, but come with great security risks, when compromised an attacker can access your Google Cloud environment. This is where Google's Workload Identity Federation comes into play and helps you with securing your access from Terraform Cloud to Google Cloud. Using keyless access at a large scale requires a dedicated Terraform Workspace from where you manage Google's Workload Identity Federation centrally and share the variables with other workspaces.

In my session, I'll demonstrate how to use Terraform to set up secure keyless authentication between Terraform Cloud and Google Cloud and how to securely delegate access from one Terraform workspace to another. This will enable teams to increase security and enhance productivity.

Repo: https://github.com/jorgel272/workload...

Speaker: Jorge Liauw Calo

Subscribe to our YouTube Channel → https://www.youtube.com/c/HashiCorp?s...

For hands-on interactive labs, visit HashiCorp Developer → https://developer.hashicorp.com/

HashiCorp provides infrastructure automation software for multi-cloud environments, enabling enterprises to unlock a common cloud operating model to provision, secure, connect, and run any application on any infrastructure. HashiCorp tools Vagrant, Packer, Terraform, Vault, Consul, Nomad, Boundary, and Waypoint allow organizations to deliver applications faster by helping enterprises transition from manual processes and ITIL practices to self-service automation and DevOps practices.

For more information → https://hashicorp.com
Twitter →   / hashicorp  
LinkedIn →   / hashicorp  
Facebook →   / hashicorp