Vault PKI Platform - Verification

Validation Results

Test Result Evidence

PKI certificate issuance

PASS

vault write pki_int/issue/domus-client

SSH certificate signing

PASS

vault write ssh/sign/domus-client

KV secrets read/write

PASS

vault kv put/get secret/test

Raft cluster status

PASS

vault operator raft list-peers (3 nodes)

Leader election

PASS

Killed leader, follower promoted

Unseal recovery

PASS

Reboot recovery successful

Deployment Verification Checklist

Check

Status

vault-01 VM created and accessible

[x]

Vault initialized and unsealed

[x]

Root CA configured (20-year TTL)

[x]

Intermediate CA configured (10-year TTL)

[x]

PKI certificate issuance working

[x]

SSH CA signing working

[x]

KV v2 secrets engine operational

[x]

File to Raft storage migration complete

[x]

vault-02 joined to Raft cluster

[x]

vault-03 joined to Raft cluster

[x]

Leader election failover tested

[x]

Unseal recovery after reboot tested

[x]

vault-ssh-sign script deployed

[x]