Creating Dynamic Secrets for Google Cloud with Vault GSP1007

Overview The Google Cloud Vault secrets engine dynamically generates Google Cloud service account keys and OAuth tokens based on IAM policies. This enables users to gain access to Google Cloud resources without needing to create or manage a dedicated service account. In this lab, you will learn about the Google Cloud secrets engine and how to dynamically provision OAuth2 authentication tokens and service account keys. Objectives In this lab, you will: - Deploy a non-dev Vault server - Create a bindings file for a custom roleset - Configure a roleset that generates OAuth2 access tokens - Configure a roleset that generates service account keys - Add a static service account to Vault to manage IAM bindings #gcp #googlecloud #qwiklabs #learntoearn