• Enable Windows SubSystem for Linux feature enabled in Windows

  Type Turn Windows features on or off in windows search bar, a Window will open in that select option Windows SubSystem for Linux, and press OK, then restart your Windows machine.

• Install Ubuntu from Microsoft Store

• Update your Ubuntu packages:

  sudo apt update

Script to enable systemd support on current Ubuntu WSL2 images from the Windows store.

• Install git:

  sudo apt install git

• Run the script and commands

  git clone https://github.com/DamionGans/ubuntu-wsl2-systemd-script.git
  cd ubuntu-wsl2-systemd-script/
  bash ubuntu-wsl2-systemd-script.sh

• Restart the Ubuntu shell and try running systemctl

  systemctl

  If you don't get an error and see a list of units, the script worked.

• Install MySQL:

  sudo apt install mysql-server

• Confirm installation and get the version number:

  mysql --version

• Start a MySQL server:

  sudo service mysql start

  After the server started, check the status by

  sudo service mysql status

• Start the security script prompts:

  sudo mysql_secure_installation

  Here set the root password and complete the steps.

• Open the MySQL client:

  sudo mysql

• Create the project database and table

CREATE DATABASE <DATABASE_NAME>;
SHOW DATABASES;
USE <DATABASE_NAME>;

CREATE TABLE IF NOT EXISTS EMPLOYEE (
   id INT AUTO_INCREMENT PRIMARY KEY,
    first_name VARCHAR(50) NOT NULL,
    last_name VARCHAR(50) NOT NULL,
    age INT NOT NULL,
    designation VARCHAR(100) NOT NULL
);

DESCRIBE EMPLOYEE;

select * from EMPLOYEE;

If unable to connect to MySQL, then perform the below:

Access denied for user 'root'@'localhost'

ALTER USER 'root'@'localhost' IDENTIFIED WITH mysql_native_password BY 'ROOT_PASSWORD';
FLUSH PRIVILEGES;

• Install Redis:

  sudo apt install redis-server

• Check the Version of Redis installed:

  redis-server --version

• Start Redis-Server:

  sudo service redis-server start

• Check to see if redis is working redis-cli ping this should return a reply of "PONG".

  redis-cli
  127.0.0.1:6379>ping

sudo service redis-server stop

sudo service redis-server status

service --status-all

• Get the latest version of Vault:

  wget https://releases.hashicorp.com/vault/1.7.2/vault_1.7.2_linux_amd64.zip

• Unzip the downloaded package:

  unzip vault_1.7.2_linux_amd64.zip
  sudo mv vault /usr/bin

• Go to the vault directory:

  cd /usr/bin

• Check the version of Vault installed

  vault --version
  

• Configure Vault data directory

  sudo mkdir /etc/vault
  sudo mkdir -p /var/lib/vault/data

• Create Vault config file:

  sudo touch /etc/vault/config.hcl
  sudo nano /etc/vault/config.hcl

  File Content:

  disable_cache = true
  disable_mlock = true
  ui = true
  listener "tcp" {
     address          = "0.0.0.0:8200"
     tls_disable      = 1
      
  }
  storage "file" {
     path  = "/var/lib/vault/data"
   }
  api_addr         = "http://0.0.0.0:8200"
  max_lease_ttl         = "10h"
  default_lease_ttl    = "10h"
  cluster_name         = "vault"
  raw_storage_endpoint     = true
  disable_sealwrap     = true
  disable_printable_check = true

• Create a Vault service file

  sudo touch /etc/systemd/system/vault.service
  sudo nano /etc/systemd/system/vault.service

  File content:

  [Unit]
  Description="HashiCorp Vault - A tool for managing secrets"
  Documentation=https://www.vaultproject.io/docs/
  Requires=network-online.target
  After=network-online.target
  ConditionFileNotEmpty=/etc/vault/config.hcl
  
  [Service]
  ProtectSystem=full
  ProtectHome=read-only
  PrivateTmp=yes
  PrivateDevices=yes
  SecureBits=keep-caps
  AmbientCapabilities=CAP_IPC_LOCK
  NoNewPrivileges=yes
  ExecStart=/usr/bin/vault server -config=/etc/vault/config.hcl
  ExecReload=/bin/kill --signal HUP 
  KillMode=process
  KillSignal=SIGINT
  Restart=on-failure
  RestartSec=5
  TimeoutStopSec=30
  StartLimitBurst=3
  LimitNOFILE=6553
  
  [Install]
  WantedBy=multi-user.target

• Start and enable vault service to start on OS boot

  systemctl daemon-reload
  systemctl start vault
  systemctl enable vault
  sudo service vault status

• Export VAULT_ADDR environment variable

  export VAULT_ADDR=http://127.0.0.1:8200
  echo "export VAULT_ADDR=http://127.0.0.1:8200" >> ~/.bashrc
  sudo rm -rf  /var/lib/vault/data/*

• Initialize Vault server:

  vault operator init

• Copy the Unseal Keys and token in a file (Sample is given below)

  Unseal Key 1: m6MKVfARMjnnijBLqFstp6PxoIJdiYhY7vyvHMAcRock
  Unseal Key 2: YtraScwdajP6Lta2QuUu0FoffLIjBTNU6tpIIVebSwya
  Unseal Key 3: fvGrpQIW14sRmbOlSaN4ilJWUCmFhfNVO4BhOZG3vBVZ
  Unseal Key 4: irJjINjZIsIibLrcNKBN7ywSg+vcSDLfURegWCbmgUjF
  Unseal Key 5: sOLZs5b5O4g6AoRuTG0nnWJsxJnsOo/FYZyNAmjHpi6x
  
  Initial Root Token: s.TGkKqJSow9rzp9hTxaoQObEb

• Access Vault UI

  Vault UI

  Try with the copied keys one by one to unseal the vault. After unsealed paste the token to Sign in

• Check the vault status and export the VAULT_TOKEN

  export VAULT_TOKEN="s.TGkKqJSow9rzp9hTxaoQObEb"
  vault auth list

• Enable the secret storage

  vault secrets enable -path=secret kv
  vault secrets list -detailed

• Add the required properties to be vaulted in a Json file

  sudo touch /usr/local/secrets.json
  sudo nano /usr/local/secrets.json

  JSON file content:

  {
  	"spring.cloud.config.server.git.username": "USER_NAME",
  	"spring.cloud.config.server.git.password": "PASSWORD"
  }

  Load the secrets to Vault from JSON file

  vault kv put secret/config-server @/usr/local/secrets.json

  To check the values are correct

  vault kv get secret/config-server

sudo apt-get install -y unzip