8 Exploring Cloud Secret Store on AWS

A very common way to store Secrets in the cloud is to utilize the infrastructure that is provided by cloud providers. The major cloud providers have two essential pieces of infrastructure that help us with efficient Secrets management on Kubernetes: Secret Storage and KMS.

In this chapter, we shall examine AWS Secrets Manager, Elastic Kubernetes Service (EKS) integration, and secret encryption with KMS. Specifically, we will cover these topics:

Overview of AWS Secrets Manager
Secrets Store CSI Driver
AWS EKS clusters and AWS Secrets Manager
KMS for AWS Kubernetes encryption

By the end of the chapter, we should be able to use AWS Secrets Manager as an external Kubernetes secret store, encrypt Secrets on ...

Get Kubernetes Secrets Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Kubernetes Secrets Handbook by Emmanouil Gkatziouras, Rom Adams, Chen Xi

8

Exploring Cloud Secret Store on AWS

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly