Hashicorp Vault PKI + Cert-manager
Today, Kubernetes is the most popular container orchestration tool. It allow us to deploy all our applications without worry about networking, rolling update process, health checks, etc.. By default communications between application in the cluster are not encrypted, so we need to generate TLS certificate for each applications, and we need to automatize it !…
How to migrate from ansible vault to hashicorp vault
Ansible Vault Today, all our project passwords are stored in ansible vault files, on file per environnement, stored in a « passwords » directory They are loaded at the beginning of the main playbook : — – hosts: all:!localhost any_errors_fatal: true gather_facts: true pre_tasks: – include_vars: password/password_{{ env }}.yml connection: local no_log: True tags: – password -…