1--- 2layout: "guides" 3page_title: "Identity and Access Management - Guides" 4sidebar_title: "Identity and Access Management" 5sidebar_current: "guides-identity" 6description: |- 7 Once a Vault instance has been installed, the next step is to configure auth 8 backends, secret backends, and manage keys. Vault configuration guides addresses 9 key concepts in configuring your Vault application. 10--- 11 12# Identity and Access Management 13 14This guide walks you through Identity and Access Management topics. 15 16- [Secure Introduction of Vault Clients](/guides/identity/secure-intro.html) 17explains the mechanism of the client authentication against a Vault server. 18 19- [Policies](/guides/identity/policies.html) are used to instrument 20Role-Based Access Control (RBAC) by specifying access privileges. Authoring of 21policies is probably the first step the Vault administrator performs. This guide 22walks you through creating example policies for `admin` and `provisioner` users. 23 24- [ACL Policy Path Templating](/guides/identity/policy-templating.html) guide 25demonstrates templated policy paths to allow non-static paths. 26 27- [AppRole Pull Authentication](/guides/identity/authentication.html) guide 28that introduces the steps to generate tokens for machines or apps by enabling 29AppRole auth method. 30 31- [AppRole with Terraform and Chef](/guides/identity/approle-trusted-entities.html) 32guide explains how AppRole auth method integrates with Terraform and Chef. 33This guide is for anyone who wishes to reproduce the demo introduced during 34the [Delivering Secret Zero: Vault AppRole with Terraform and 35Chef](https://www.hashicorp.com/resources/delivering-secret-zero-vault-approle-terraform-chef) 36webinar. 37 38- [Token and Leases](/guides/identity/lease.html) guide helps you 39understand how tokens and leases work in Vault. The understanding of the 40lease hierarchy and expiration mechanism helps you plan for break glass 41procedures and more. 42 43- [Identity - Entities & Groups](/guides/identity/identity.html) guide 44demonstrates the usage of _Entities_ and _Groups_ to manage Vault clients' 45identity. 46 47## Vault Enterprise 48 49- [Sentinel Policies](/guides/identity/sentinel.html) guide 50walks through the creation and usage of _Role Governing Policies_ (RGPs) and 51_Endpoint Governing Policies_ (EGPs) in Vault. 52 53- [Control Groups](/guides/identity/control-groups.html) can be used to enforce 54additional authorization factors before the request can be completed. This 55guide walks through the implementation of a Control Group. 56