Integrate Azure Key Vault with Azure Kubernetes Service(AKS)
ฝัง
- เผยแพร่เมื่อ 2 ต.ค. 2024
- Managing secrets and using secrets in the Azure Kubernetes environment is a very important security aspect. This video covers a secure way of using secrets that are stored in Azure Key Vault into your Azure Kubernetes Cluster(AKS).
Blog Link:
/ access-secrets-from-az...
#azure, #devops, #key-vault, #aks, #kubernetes, #secret, #devsecops, #yaml, #security
Excellent video! I like how you first described the overall process at 4:30 before conducting the demo. Thank you!
Very informative video. Can we also have the video for managed identity :)
Awesome video - Could you also suggest, alternative way to avoid mounting ?
Good video. This pod is created just to check the secret right, for another application pods we dont need to do anything right. It will get connected with password?
i am planning to connect multiple instance to central keyvault in your demo you are added vm scaleset instead of that can i use azure service principal id or userAssignedIdentityID if yes can you please provide those steps
Can we use azure vault to store certificate and use it with aks ingress for ssl termination?
good explanation. i am looking someone who can teach me complete aks with devops pipeline
Awesome but a quick question. I understand this tutorial uses “managed identity” to authenticate keyvault service. Can we use any other credential auth mechanism for AKS ?
Also what could be the design reason for managed identity access to vmss instead of whole aks service(hosting vmms) ?
Very clear explanation and moreover, you demo it which is awesome
How can i implement the secret rotation policy on AKS?
Very informative! Thanks a lot.
Thanks a lot for sharing! You explained very clearly and nicely. I have one doubt, does anyone know after the first pod that mounts the secret how to get the key vault value into the other pods env?
Very helpful, thanks!
Hello Will the similar process follow for Azure redhat openshift
Very GOOD! Only video/article that worked for me
Hi is it safe to use this busybox image from google container registry ?
Simple and beautiful, I loved this explanation.
Excellent explanation. Thank you
Mate, any idea on implementing the final pod deployment using terraform?
bhai ye mate word use krke cool banne ki koshish mt kia kr, australian nahi h tu, ek chutiya ldka h tu yaad rakhio
Awesome video! great job!
Good explanation
How to set an environment variable from this secretProviderClass to the container?
Hi! Did you manage to achieve this? I have the same doubt :(. If you run a new pod... how can you read/add the secret value in the env?
Once text file is mounted and accessible inside pod - you can run add it to init script using linux export command
Were you able to figure out this.
Awesome, kudos to you
Well Done :)
great demo
Thanks for sharing your knowledge. If you have a time please share some real time issues and solutions on AKS.
Sure, I will try to make a video on real time issues after this AKS series.