Skip to content

openshift-vault-integration/vault-in-cluster-config

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 
 
 

Repository files navigation

Vault In-Cluster Configuration

Configure Vault for in-cluster Kubernetes authentication. This configuration is only valid when the Vault server is running on the same cluster that needs to authenticate to Vault.

The script setup.sh will set up:

  • Enable a k8s auth engine for the cluster
  • Configure the k8s auth engine with a k8s certificate/token
  • Enable a KV secret engine
  • Create a policy to use for namespace segmented Vault roles

The script at the moment does not:

  • Create a role for a namespace

Running

NOTE: The setup script assumes Vault was initialized with vault-init using the default set up. If you customized or deployed Vault through other means, you will need to make modifications to the script.

./setup.sh

About

Configure Vault for in-cluster Kubernetes authentication

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages