As the first HashiCorp partner in Switzerland, we cover the entire HashiCorp stack with certified engineers and are therefore the perfect partner to help you implement the Cloud Operations Model in your organization - from consulting to implementation and operation.
Managing Secrets & Protecting Sensitive Data
Protect, store, control, and rotate access to passwords, tokens, certificates, encryption keys and other sensitive data via a web interface, command line or REST API.
Together with your IT and security teams, our certified engineers help you plan, roll out, and operate HashiCorp Vault. Whether it is the connection of third-party solutions, automation via APIs or the integration of an HSM - with our experience, the implementation will be done more efficient and according to best practices..
Vault is probably the most popular Secret Management solution and stands out among other things by its APIs and enterprise possibilities such as the connection to an HSM.
Based on a key account in Switzerland, Simon Nussbaum, Senior System Engineer at Adfinis, will show you how we integrated Vault and which hurdles we had to overcome.
Vault Key Features
- Security on foreign hardware
- Audit Journal
- Role-based access
- HSM Integration
- FIPS 140-2 Compliance
- Automation via APIs
- Password Rotation
Centrally store, access, and distribute dynamic secrets such as tokens, passwords, certificates, and encryption codes.
Protect your application data with centralized key management and simple APIs and keep control who gets access to the data.
Infrastructure as Code
Secure provisioning and management of multi-cloud infrastructures of any size.
Using HashiCorp Configuration Language (HCL), a simple, human-readable configuration language, you can define a provider-independent configuration of infrastructure resources. The configuration can also be defined in JSON for programmatic generation and application integration. Reduce dependencies to a specific cloud API and increase the speed and maintainability of your cloud deployments.
Together with your IT team, our certified engineers support you in the planning and implementation of the Infrastructure-as-Code strategy using HashiCorp Terraform. Whether for the automation of public cloud deployments or the optimization of on-premise processes - with our experience, the implementation will be done more efficient and according to best practices.
Terraform is probably the most popular infrastructure-as-code solution to provide cloud and infrastructure services.
Terraform Key Features
- Automation and standardization of infrastructure deployments
- Reduction of Vendor Lock-In
- Reproducibility and auditing of infrastructure changes
- Key to your own multi-cloud strategy
Provisioning and managing public and private infrastructure using a generic and human-readable configuration language.
Connect and Secure Any Service
Service-to-service communication for public and private cloud
HashiCorp Consul provides a distributed network layer to connect, secure, and control services across system boundaries. This makes it possible to implement a zero-trust approach in which only services that have explicit permissions are allowed to communicate with each other. In addition, connections are encrypted end-to-end to meet necessary security requirements over public communication channels or in public cloud environments
Together with your IT team, our certified engineers support you in the planning and implementation of service-to-service communication using HashiCorp Consul. Whether in a public cloud environment or to implement a zero trust approach in your on-premise environment - with our experience, the implementation will be done more efficient and according to best practices.
Consul is one of the most popular solutions to meet the highest security requirements in the network environment and to implement a zero-trust approach.
Consul Key Features
- Service-to-service communication for bare metal, VM and container workloads
- Secure connections across system boundaries, e.g. in public cloud environments
- Service registry and service discovery
Encrypted and Controlled
Fully encrypted, authenticated and authorized communication even for protocols without integrated encryption and clearly defined rules which communication may be established or not.
Service Registry, integrated health checks and DNS and HTTP interfaces enable each service to be recognized and discovered by other services.