Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Infrastructure-as-Code Sovereignty
- Understanding the risks of cloud consoles and SaaS IaC, including vendor lock-in and audit gaps.
- Deep dive into Terraform architecture: core components, providers, state management, and the plan/apply workflow.
- Comparative analysis of Terraform against alternatives like Pulumi, Ansible, and CloudFormation.
Configuration Language and Providers
- Mastering HCL syntax: defining resources, data sources, variables, and outputs.
- Configuring on-premise providers: Proxmox, libvirt, vSphere, and PowerDNS.
- Exploring community providers and the basics of custom provider development.
- Understanding resource dependencies and the underlying graph theory.
State Management
- Evaluating the security implications of local vs. remote state storage.
- Setting up self-hosted backends using PostgreSQL, S3-compatible storage (MinIO), Gitea, and etcd.
- Implementing state locking, encryption at rest, and robust backup strategies.
- Handling state migration and detecting configuration drift.
Modules and Workspaces
- Structuring modules with inputs, outputs, and versioning best practices.
- Building private module registries using Git tags.
- Ensuring isolation across dev, staging, and production environments via workspaces.
- Leveraging self-hosted alternatives to Terraform Cloud, such as Atlantis or Spacelift.
Provisioning and Lifecycle
- Integrating cloud-init and PXE for bare-metal provisioning.
- Utilizing provisioners: local-exec, remote-exec, and file transfer.
- Leveraging null resources and triggers for custom automation workflows.
- Managing resource destruction, planning, and tainting for safe rollbacks.
Security and Compliance
- Enforcing variable validation and marking sensitive data appropriately.
- Implementing policy-as-code for on-premise environments using Sentinel and OPA alternatives.
- Establishing robust audit logging and plan file review processes.
CI/CD Integration
- Automating plan and apply workflows in GitHub Actions or Woodpecker CI.
- Integrating
terraform fmt,validate, and linting tools in pre-commit hooks. - Setting up cost estimation and budget guardrails.
- Developing comprehensive rollback strategies and state recovery procedures.
Requirements
- Intermediate understanding of infrastructure-as-code concepts and cloud computing fundamentals.
- Practical experience with JSON, HCL (HashiCorp Configuration Language), and version control systems.
- Familiarity with on-premise virtualization platforms such as Proxmox and VMware.
Audience
- Infrastructure engineers responsible for provisioning bare metal servers and private cloud resources.
- DevOps teams managing on-premise resources through declarative configuration.
- Organizations actively seeking to avoid reliance on cloud control planes for managing infrastructure state.
14 Hours
Testimonials (3)
pacing for the most part was fantastic. Michal was very good at ensuring the audience were engaged and ensured everyone was following along for the most part
Asif Shaikh - Carpmaels & Ransford
Course - Terraform on Microsoft Azure
Checking all the details in practice - by writing real code
Michal Pipala - EY
Course - Advanced Terraform: Efficient Infrastructure as Code
the instructor was very well prepared
