This set of Terraform config is meant to quickly setup a simple Boundary demo with an SSH server.
Setup is based on HashiCorp Boundary Learn Guide
- A running SSH server
- A running Boundary cluster (Can be HCP Boundary)
- A running Vault cluster (Can be HCP Vault)
- Terminal with Terraform binary installed
- Terminal with Vault and Boundary binary installed (Tested with Boundary v0.11.0 and Vault v.1.11.2)
Fill up the relevant values in terraform.tfvars
boundary_addr= "http://127.0.0.1:9200" #can be HCP Boundary
host_ip= "1.1.1.1" #IP of SSH server
auth_method_id = "ampw_1234567890"
password_auth_method_login_name = "admin"
password_auth_method_password = "password"
vault_addr = "http://127.0.0.1:8200" #can be HCP Vault
vault_token = "root"
ssh_private_key_path = "<path/to/private/key>" For HCP Vault (or Vault Enterprise which has namespaces configured), uncomment namespace line in vault.tf to set the intended namespace in Vault.
Use Terraform to perform the setup
terraform init
terraform apply -auto-approve
The output instructions will enable you to use Boundary to ssh into the target host. Information rendered will differ for individual cases.
Follow the steps on your terminal to start testing:
1. export BOUNDARY_ADDR=http://127.0.0.1:9200
2. boundary authenticate password -auth-method-id ampw_1234567890 -login-name admin
2. boundary connect ssh -target-id ttcp_JlTmSGlwg2