HashiCorp Vault is a popular tool for secrets management, but can it be used with Kubernetes? The first part of this interactive demo-driven talk showcases how to run Vault as a service on Kubernetes. We will walk through different deployment architectures and strategies for making sure Vault is run securely on Kubernetes. The second part of this talk focuses on how applications and services interact with Vault. We will discuss the implementation details and tradeoffs for authenticating pods and services to Vault to retrieve dynamic credentials like database passwords and Google Cloud Platform IAM credentials. Attendees we leave with an understanding of how to operationalize Vault inside Kubernetes and how to expose Vault secrets to Kubernetes applications and services.
Event schedule → http://g.co/next18
Watch more Security sessions here → http://bit.ly/2zJTZml
Next ‘18 All Sessions playlist → http://bit.ly/Allsessions
Subscribe to the Google Cloud channel! → http://bit.ly/NextSub
Publisher: Google Cloud
You can watch this video also at the source.