-
### Which version of kubefirst are you using?
2.2.2
### Which cloud provider?
AWS, Civo, DigitalOcean, Google Cloud, Vultr
### Which installation type?
CLI
### Which distributed Git provider?
N…
-
I have a sealed file that was sealed by an enclave that was signed by version 2.15 sdk (sgx_sign using MRSIGNER).
I then created a new enclave that I signed with the same key only used version 2.20 o…
-
**Describe the bug**
When migrating from awskms to shamir seals, the migration works, however, a backup of the migrated vault cluster is unable to be restored, as it still looks for the KMS key.
…
-
**Is your feature request related to a problem? Please describe.**
Yes, this feature request is related to a problem. Currently, OpenBao does not support integration with Hardware Security Modules (H…
-
Hey! How to correnct setup PV for vault-0 pod in HA mode?
i get:
```kubectl get pod -n vault
NAME READY STATUS RESTARTS AGE
vault-0 …
-
**Describe the bug**
I am deploying a new Hashi Vault configuration to AWS using the following configuration. I have validated the EC2 instances can push, delete, read from the S3 bucket however when…
-
I have deployed Vault with HA using Raft with AWS KMS successfully, now I wanted to implement TLS for internal communication however after configuring the Helm chart I receive such errors:
```bash
2…
-
## Overview
AWS supports [VPC "interface" endpoints](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-endpoints.html) for both EC2 and [STS](https://docs.aws.amazon.com/IAM/latest/UserGuide/id…
-
I suspect this might be the underlying cause of my [last ticket](https://github.com/hashicorp/vault-k8s/issues/117) although I can't be sure.
I've deployed Vault with the HA consul backend, and I a…
ghost updated
3 years ago
-
Since Clevis utilizes the TPM auto-unlock in recovery mode the same way it does in a regular bootup, this creates a vulnerability where someone with physical access could bypass the OS login screen an…