DigitalOcean

Tech Talk

Managing Kubernetes Secrets: Comparing External Secrets Operator and Secrets Store CSI Driver

Updated on May 10, 2022
Managing Kubernetes Secrets: Comparing External Secrets Operator and Secrets Store CSI Driver

About the Talk

There are many ways to keep your application API keys, tokens, and passwords confidential in Kubernetes, but choosing the right technique can feel overwhelming.

Explore the benefits of using an external secrets provider like HashiCorp Vault. We’ll compare and contrast two techniques for using Vault to store and share secrets with a Kubernetes cluster. You’ll come away from this talk with a better understanding of how to use Vault to manage secrets in Kubernetes.

What You’ll Learn

  • Benefits of using external secrets provider
  • How to use the Kubernetes External Secrets Operator with HashiCorp Vault
  • How to use the Kubernetes Secrets Store CSI Driver with HashiCorp Vault
  • Benefits and drawbacks of the External Secrets Operator and the Secrets Store CSI Driver

This Talk Is Designed For

  • Anyone interested in Kubernetes
  • Kubernetes administrators
  • Application developers who want to ensure their application secrets are secure

Prerequisites

  • Basic knowledge of Kubernetes
  • Some familiarity with Kubernetes Secrets a plus

Resources

How To Securely Manage Secrets with HashiCorp Vault on Ubuntu 20.04

Secrets Store CSI Driver

Mount Vault Secrets through Container Storage Interface (CSI) Volume

External Secrets Operator

Thanks for learning with the DigitalOcean Community. Check out our offerings for compute, storage, networking, and managed databases.

Learn more about our products

About the authors
Default avatar
Kim Schlesinger

author

Developer Advocate

I’m a developer advocate at DigitalOcean focusing on Kubernetes and other Cloud Native technologies

Default avatar
Daniel Hix

author

Software Engineer 2 | Storage

I build things at DigitalOcean that make storage in the cloud work, and specifically I work with Kubernetes to enable workload orchestration.

Still looking for an answer?

Ask a questionSearch for more help
Was this helpful?
 
Leave a comment


This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Comment
Creative CommonsThis work is licensed under a Creative Commons Attribution-NonCommercial- ShareAlike 4.0 International License.

Try DigitalOcean for free

Click below to sign up and get $200 of credit to try our products over 60 days!

Sign up

Join the Tech Talk
Success! Thank you! Please check your email for further details.

Please complete your information!

Become a contributor for community

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Sign Up

DigitalOcean Documentation

Full documentation for every DigitalOcean product.

Learn more

Resources for startups and SMBs

The Wave has everything you need to know about building a business, from raising funding to marketing your product.

Learn more

Get our newsletter

Stay up to date by signing up for DigitalOcean’s Infrastructure as a Newsletter.

New accounts only. By submitting your email you agree to our Privacy Policy

The developer cloud

Scale up as you grow — whether you're running one virtual machine or ten thousand.

Get started for free

Sign up and get $200 in credit for your first 60 days with DigitalOcean.*

*This promotional offer applies to new accounts only.

© 2024 DigitalOcean, LLC.Sitemap.