9 Exploring Cloud Secret Store on Azure

Previously, we did a deep dive into Secrets Manager on AWS. In this chapter, we shall focus on another popular cloud provider, Microsoft Azure. We will learn about Azure Key Vault, a solution provided by Azure to store Secrets and perform encryption and decryption. We will utilize Azure Key Vault in order to store Secrets and use them on our Kubernetes workloads and we also utilize Key Vault to encrypt the Secrets that reside on etcd.

In this chapter, we will cover the following topics:

Overview of Azure Key Vault
Introduction to Workload Identity
AKS cluster and Azure Key Vault integration
Auditing and logging
Azure Key Vault for secret encryption

By the end of this chapter, we should be able to store ...

Get Kubernetes Secrets Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Kubernetes Secrets Handbook by Emmanouil Gkatziouras, Rom Adams, Chen Xi

9

Exploring Cloud Secret Store on Azure

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly