2026-06-12 –, Salon A (Altispeed Ballroom)
K8s Secrets are neither secret, nor secure. Hashicorp Vault is an OSS Secret management system with lots of powerful security features, and it plugs into K8s only after significant wrangling.
Using Vault as the secret store for Kubernetes is quite challenging due to the domain (security), and the number of options available. I'll show one way to set up Vault with K8s for both encryption and credentials.
I'm a team lead at CIQ, where I design and build automation systems for releasing packages and images for Rocky Linux based products.
I've administrated K8s for 4 years, but have nearly 30 years of experience with production Linux systems.