How are you managing secrets?

nicdoye · May 22, 2018, 1:15pm

What are people using to manage secrets, such as database passwords, license keys, etc.?

Do you restrict access to these secrets to certain pods? Do you rotate them?

Solutions I’ve seen (but not tried at this stage) include:

Vault with https://github.com/Boostport/kubernetes-vault and https://github.com/UKHomeOffice/vault-sidekick
Bitnami’s sealed secrets https://engineering.bitnami.com/articles/sealed-secrets.html
Kubesec https://github.com/shyiko/kubesec
Aqua Security (+ Vault). I work for an open source company, and we can’t provide a solution and then tell people they need to buy X to get it to work.

But what do you use? How hard was it to set up? Would you use it again, now?

Topic		Replies	Views
Using minikube to run pods locally General Discussions development	0	555	July 24, 2018
How to secure Kubernetes secrets on bare metal? General Discussions security , on-prem	1	945	February 24, 2023
Windows container security Windows	4	1667	April 2, 2019
We have published a series of Kubernetes tutorials. Need feedback on these tutorials General Discussions	1	1121	November 20, 2018
Kubernetes Secrets vs Hashicorp/Azure Vault General Discussions development	2	6455	July 30, 2018