This lab is currently in Beta, content may be updated as we refine the material
LABBEGINNER

Audit and Rotation in Conjur OSS

Trigger authentication and authorization events, read the Conjur OSS audit trail, then rotate a host API key and a variable value and verify the change.

45 minutes
Audit and Rotation in Conjur OSS - Platform Engineering Hands-On Lab Icon

Lab Overview

In this operations-focused lab you exercise the day-2 secrets workflow on a running Conjur OSS v1.24.0 deployment. You first generate real authentication and authorization events (successful logins, secret fetches, and one denied fetch), then read and interpret the Conjur OSS audit trail to find who did what and which request was denied. You then rotate a machine identity's API key with conjur host rotate-api-key, proving the old key stops working while the new one authenticates, and finally rotate a variable to a new version and confirm consumers pick up the new value. The lab starts from the canonical Conjur 101 Docker Compose deployment with a pre-loaded policy of a host and a variable.

What You'll Learn

Generate authentication and authorization events (including a denied request) to populate the audit trail

Read and interpret the Conjur OSS audit log and filter it by role and resource

Rotate a host (machine identity) API key with the CLI v8 and confirm the old key no longer authenticates

Rotate a variable to a new version and verify consumers retrieve the updated value

Understand the v1.24.0 API-key rotation-timestamp tracking added for operability

Prerequisites

Completion of the Conjur 101 deployment and policy labs (or equivalent familiarity)

Basic Linux command-line familiarity

Basic understanding of REST APIs, JSON, and environment variables

Technologies Covered

conjurcyberarksecrets-managementauditrotationmachine-identitybeginner

Choose your plan

Simple, Transparent Pricing

Unlock full access to TeKanAid courses, labs, and bootcamps

Buying for a team? Private corporate training is available for up to 15 learners.View team training
MonthlyQuarterly

Pro

Course content without labs

$59/month

Renews automatically. Cancel anytime.

Final price verified at checkout.

  • Full access to all courses
  • Progress tracking
  • Certificate of completion
  • Community access
  • Bootcamp participation
  • New content access
Recommended

Premium

Full access with hands-on labs

$99/month

Renews automatically. Cancel anytime.

Final price verified at checkout.

  • Everything in Pro
  • Unlimited hands-on labs
  • Lab AI Assistant
  • Accelerator bootcamps with live office hours
  • Priority support
Get Access Now

Prefer a single course?

Purchase individual courses for a one-time fee of $79. Full access to course content, quizzes, certificates, and community features, lab access is not included.

Browse Courses

Try it free, no credit card

Three free ways to start. All bridge into the paid Premium catalog when you're ready.

▶ Start with free courses and labs🧩 Solve your first free puzzle📧 Get the free 7-day crash course

Not ready to commit? The crash course is email-only. No academy account required.

Ready to Get Started?

Start this hands-on lab and build real-world Platform Engineering skills

Get Access Now