Introduction
With HCP Vault clusters, you can chose to enable or disable the visibility of the HCP Vault public URL. This article will provide guidance on how to enable or disable the HCP Vault public URL via the HCP Portal UI or via Terraform configuration.
NOTE: All new development tier HCP Vault clusters are configured with public access enabled by default. For production tiers (starter, standard, and plus) public access will be disabled by default.
Prerequisites
- Access to HCP Portal UI
- New or Existing HCP Cluster
- Terraform environment setup for HCP Vault cluster (optional)
Procedure
Via the HCP Portal UI
-
-
New HCP Clusters
-
- From the "Create a Vault Cluster" page, chose to either allow or disallow public HCP Vault URL via the "Network accessibility" toggle button.
-
-
Existing HCP Clusters
-
- From your HCP Vault cluster "Overview" page, go to "Manage"
- Go to "Edit configuration"
- Chose to either enable or disable public HCP Vault URL via the "Network accessibility" toggle button
- Continue to edit the cluster by clicking "Next"
- Review the changes then click "Apply Changes"
-
-
Via Terraform Configuration
- Review the Terraform HCP Registry "public_endpoint" optional variable
- Set the variable to true or false
- EXAMPLE
resource "hcp_vault_cluster" "learn_hcp_vault" {
hvn_id = hcp_hvn.learn_hcp_vault_hvn.hvn_id
cluster_id = var.cluster_id
tier = var.tier
public_endpoint = true
}