I am setting up a vault system in our test environment in anticipation of being able to use it in wider production. I have configured an external vault, and I have successfully integrated it with the Kubernetes clusters. My question is: can vault dynamically manage secrets in all applications that we are running, or does it have to be passed to each application or pod?
What exactly do you mean by “integrated”?
That’s certainly one of use cases for Vault, if not the most common one.
You could add some clarity to your question. Kubernetes apps can use Vault secrets in a variety of ways: