# docker run -d --name my-vault -p 8200:8200 hashicorp/vault:latest
# docker logs my-vault
...
Unseal Key: P0NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN8=
Root Token: hMMMMMMMMMMMMMMMMMMMMMMMMMV
...
# docker exec -ti my-vault sh
/ # export VAULT_ADDR='http://0.0.0.0:8200'
/ # vault login token=hMMMMMMMMMMMMMMMMMMMMMMMMMV
/ # vault kv put ansible/projects/openvpn1 \
username=student \
password=password
/ # vault policy write projects-ansible - <<EOF
path "ansible/projects/*" {
capabilities = [ "read" ]
}
EOF
/ # vault token create -policy="projects-ansible"
Key Value
--- -----
token hKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKU
token_accessor vPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPp
token_duration 768h
token_renewable true
token_policies ["default" "projects-ansible"]
identity_policies []
policies ["default" "projects-ansible"]