Course Outline
Infrastructure-as-Code Sovereignty
- Understanding how cloud consoles and SaaS IaC tools create lock-in and audit gaps.
- Terraform architecture: core components, providers, state management, and the plan/apply cycle.
- Comparing Terraform with Pulumi, Ansible, and CloudFormation.
Configuration Language and Providers
- HCL syntax: resources, data sources, variables, and outputs.
- On-premise providers: Proxmox, libvirt, vSphere, and PowerDNS.
- Community providers and basics of custom provider development.
- Resource dependencies and graph theory principles.
State Management
- Security implications of local versus remote state storage.
- Self-hosted backends: PostgreSQL, S3 (MinIO), Gitea, and etcd.
- State locking, encryption at rest, and backup strategies.
- State migration and drift detection techniques.
Modules and Workspaces
- Module structure, inputs, outputs, and versioning.
- Setting up private module registries with Git tags.
- Workspace isolation for development, staging, and production environments.
- Alternatives to Terraform Cloud: self-hosted solutions like Atlantis or Spacelift.
Provisioning and Lifecycle
- Cloud-init and PXE integration for bare-metal provisioning.
- Provisioners: local-exec, remote-exec, and file.
- Using null resources and triggers for custom workflows.
- Planning destroy operations and resource tainting.
Security and Compliance
- Variable validation and marking sensitive data.
- Implementing Sentinel and OPA policy-as-code alternatives for on-premise setups.
- Audit logging and plan file review processes.
CI/CD Integration
- Automating plan/apply workflows in GitHub Actions or Woodpecker CI.
- Utilising Terraform fmt, validate, and lint in pre-commit hooks.
- Cost estimation and establishing budget guardrails.
- Rollback strategies and state recovery methods.
Requirements
- Intermediate knowledge of infrastructure-as-code and cloud concepts.
- Experience with JSON, HCL, and version control systems.
- Familiarity with on-premise virtualisation technologies (Proxmox, VMware).
Audience
- Infrastructure engineers provisioning bare metal servers and private clouds.
- DevOps teams managing on-premise resources through declarative methods.
- Organisations seeking to avoid cloud control planes for infrastructure state management.
Custom Corporate Training
Training solutions designed exclusively for businesses.
- Customized Content: We adapt the syllabus and practical exercises to the real goals and needs of your project.
- Flexible Schedule: Dates and times adapted to your team's agenda.
- Format: Online (live), In-company (at your offices), or Hybrid.
Price per private group, online live training, starting from 2600 € + VAT*
Contact us for an exact quote and to hear our latest promotions
Testimonials (3)
pacing for the most part was fantastic. Michal was very good at ensuring the audience were engaged and ensured everyone was following along for the most part
Asif Shaikh - Carpmaels & Ransford
Course - Terraform on Microsoft Azure
Checking all the details in practice - by writing real code
Michal Pipala - EY
Course - Advanced Terraform: Efficient Infrastructure as Code
the instructor was very well prepared
