Using HashiCorp Vault with Kubernetes (Cloud Next '18)
ฝัง
- เผยแพร่เมื่อ 5 ก.ย. 2024
- HashiCorp Vault is a popular tool for secrets management, but can it be used with Kubernetes? The first part of this interactive demo-driven talk showcases how to run Vault as a service on Kubernetes. We will walk through different deployment architectures and strategies for making sure Vault is run securely on Kubernetes. The second part of this talk focuses on how applications and services interact with Vault. We will discuss the implementation details and tradeoffs for authenticating pods and services to Vault to retrieve dynamic credentials like database passwords and Google Cloud Platform IAM credentials. Attendees we leave with an understanding of how to operationalize Vault inside Kubernetes and how to expose Vault secrets to Kubernetes applications and services.
Event schedule → g.co/next18
Watch more Security sessions here → bit.ly/2zJTZml
Next ‘18 All Sessions playlist → bit.ly/Allsessions
Subscribe to the Google Cloud channel! → bit.ly/NextSub
re_ty: Publish; product: Cloud - Containers - Google Kubernetes Engine (GKE); fullname: Seth Vargo; event: Google Cloud Next 2018;
Thanks for great introduction to the Volt!
Is it possible to fetch specific version of vault secrets into kubernetes application ?
does someone know where are the scripts available?
You can find them from here : github.com/hashicorp/vault-guides/tree/master/identity/vault-agent-k8s-demo
Cool...