Vault Plugins on GKE

I have deployed vault on GKE. I have an application that has to request an API for a password change once per month. To do this using vault I am wanting to use Seth Vargo’s password generator plugin. Found here:

However, when i try and register the plugin i get an error message:

  • could not set plugin, plugin directory is not configured

Does anyone know how I can set a plugin directory and add in the github repo for the plugin into this directory.

I believe this needs to be done within the vault config.hcl file but unsure on how this is achieved on GKE.

You need to specify the plugin_directory in your Vault configuration file. I’m not familiar with GKE, but you might need to set up a persistent volume that’s accessible by the pod, drop the binary in there, and specify that as the plugin directory.