K
Q

Auto-Unsealing of Hashicorp Vault on Kubernetes

12/21/2018

I have been trying lately to implement vault configurations on Kubernetes.

I have encountered a few issues and I wanted to ask if maybe there is a solution for that.

my question is where to store the unsealing tokens and the root token?

I saw some solutions where it is being stored in AWS KMS or google cloud.

in my case I need my cluster to be cloud agnostic ( even on premises ) which mean I prefer not to rely on a specific cloud resources.

any idea how I can secure those vault credentials since saving those values in a config-map/secret will make the vault easily accessed.

thanks in advance.

-- eran meiri
hashicorp-vault
kubernetes

Similar Questions

Windows container deployed in ACS kubernetes cluster not able to be reached using the assigned Public IP?
deployment of golang project with yaml file
Kubernetes kubectl not pruning resources with prune option
Nginx ingress controller still redirect to SSL
Azure AKS Prometheus-operator double metrics

0 Answers