Providing remote access to applications and systems requires secure routing to the destination and credentials to authenticate the user. Traditionally, you achieve this using a Virtual Private Network (VPN) or a Bastion server to bridge into the private network. Credentials are generally provided individually, created as part of a manual process, and with password rotation on a best-intention basis. This is problematic as access is usually too broad, difficult to audit, and complex to maintain.

In a zero-trust world, access is granted from point to point, not to the network edge; credentials are unique to the session, and everything is fully auditable. HashiCorp Boundary and Vault provide this solution giving you greater control over access to your systems.

In this talk, Nic and Rob will walk you through the steps needed to configure Boundary, Vault, and Nomad to provide secure access to dynamic workloads.