open-vault/website/source/guides/identity/index.html.md

---
layout: "guides"
page_title: "Identity and Access Management - Guides"
sidebar_current: "guides-identity"
description: |-
  Once a Vault instance has been installed, the next step is to configure auth
  backends, secret backends, and manage keys. Vault configuration guides addresses
  key concepts in configuring your Vault application.   
---

# Identity and Access Management

This guide walks you through Identity and Access Management topics.

- [Policies](/guides/identity/policies.html) are used to instrument
Role-Based Access Control (RBAC) by specifying access privileges. Authoring of
policies is probably the first step the Vault administrator performs. This guide
walks you through creating example policies for `admin` and `provisioner` users.

- [AppRole Pull Authentication](/guides/identity/authentication.html) guide
that introduces the steps to generate tokens for machines or apps by enabling
AppRole auth method.

- [AppRole with Terraform and Chef](/guides/identity/approle-trusted-entities.html)
guide explains how AppRole auth method integrates with Terraform and Chef.
This guide is for anyone who wishes to reproduce the demo introduced during
the [Delivering Secret Zero: Vault AppRole with Terraform and
Chef](https://www.hashicorp.com/resources/delivering-secret-zero-vault-approle-terraform-chef)
webinar.

- [Token and Leases](/guides/identity/lease.html) guide helps you
understand how tokens and leases work in Vault. The understanding of the
lease hierarchy and expiration mechanism helps you plan for break glass
procedures and more.
Changed the layout category menu (#4007) * Changed the layout category menu * Fixed typos * Fixed a typo, and removed the duplicated generate-root guide * Fixed the redirect.txt 2018-02-23 00:24:01 +00:00			`---`
			`layout: "guides"`
			`page_title: "Identity and Access Management - Guides"`
			`sidebar_current: "guides-identity"`
			`description: \|-`
			`Once a Vault instance has been installed, the next step is to configure auth`
			`backends, secret backends, and manage keys. Vault configuration guides addresses`
			`key concepts in configuring your Vault application.`
			`---`

			`# Identity and Access Management`

			`This guide walks you through Identity and Access Management topics.`

			`- [Policies](/guides/identity/policies.html) are used to instrument`
			`Role-Based Access Control (RBAC) by specifying access privileges. Authoring of`
			`policies is probably the first step the Vault administrator performs. This guide`
			walks you through creating example policies for `admin` and `provisioner` users.
AppRole with Terraform & Chef (#4200) * WIP - Teddy's webinar * WIP * Added more details with diagram * Fixed a typo * Added a note about terraform bug with 0.11.4 & 0.11.5 * Minor adjustment * Fixed typos * Added matching CLI commands * Added extra speace for readability 2018-04-09 15:50:50 +00:00
Changed the layout category menu (#4007) * Changed the layout category menu * Fixed typos * Fixed a typo, and removed the duplicated generate-root guide * Fixed the redirect.txt 2018-02-23 00:24:01 +00:00			`- [AppRole Pull Authentication](/guides/identity/authentication.html) guide`
			`that introduces the steps to generate tokens for machines or apps by enabling`
Transit rewrap (#4091) * Adding new guides * Replaced backend with engine * Grammar for the encryption guide * Grammar and Markdown style for the Transite Rewrap guide See https://github.com/hashicorp/engineering-docs/blob/master/writing/markdown.md for notes on numbered Markdown lists. * grammar and wording updates for ref arch guide * Updating replication diagram * Removing multi-tenant pattern guide * Added a note 'Enterprise Only' * Removing multi-tenant pattern guide * Modified the topic order * Grammar and Markdown formatting * Grammar, Markdown syntax, and phrasing * Grammar and Markdown syntax * Replaced 'backend' with appropriate terms * Added a note clarifying that replication is an enterprise-only feature * Updated the diagram & added additional resource links * update some grammar and ordering * Removed the inaccurate text in index for EaaS 2018-03-19 21:56:45 +00:00			`AppRole auth method.`
AppRole with Terraform & Chef (#4200) * WIP - Teddy's webinar * WIP * Added more details with diagram * Fixed a typo * Added a note about terraform bug with 0.11.4 & 0.11.5 * Minor adjustment * Fixed typos * Added matching CLI commands * Added extra speace for readability 2018-04-09 15:50:50 +00:00
			`- [AppRole with Terraform and Chef](/guides/identity/approle-trusted-entities.html)`
			`guide explains how AppRole auth method integrates with Terraform and Chef.`
			`This guide is for anyone who wishes to reproduce the demo introduced during`
			`the [Delivering Secret Zero: Vault AppRole with Terraform and`
			`Chef](https://www.hashicorp.com/resources/delivering-secret-zero-vault-approle-terraform-chef)`
			`webinar.`

Changed the layout category menu (#4007) * Changed the layout category menu * Fixed typos * Fixed a typo, and removed the duplicated generate-root guide * Fixed the redirect.txt 2018-02-23 00:24:01 +00:00			`- [Token and Leases](/guides/identity/lease.html) guide helps you`
			`understand how tokens and leases work in Vault. The understanding of the`
			`lease hierarchy and expiration mechanism helps you plan for break glass`
			`procedures and more.`