-
I have a reference to a certificate in a KV with the .kubernetes.secret.type set to kubernetes.io/tls. However instead of a tls secret it generates an opaque secret. This did work 2 days ago the lates…
-
More of a question than an issue. I've followed the instructions in the docs directory to get Vault deployed production ready. I'm running into an issue where Prometheus is stuck at init:0/3 It appear…
-
**Describe the bug**
After switching from helm chart 0.28.1 to 0.29.0 templating in server-config-configmap.yaml stopped working.
**To Reproduce**
Steps to reproduce the behavior:
1. Run: …
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Community Note
* Please vote on this issue by adding a :thumbsup: [reaction](https://blog.github.com…
-
**Describe the bug**
We have a 3 node Vault cluster with DynamoDB as an HA backend.
Randomly, one of the members will get sealed all of a sudden thus making the cluster a 2 node cluster.
Once…
-
**Describe the bug**
We have a database secret with default and max ttl of 72000h but vault is running revocation statements after 32 days.
**To Reproduce**
Not able to reproduce this anyw…
-
In the last sprint, we identified that our RDS certificates are expiring soon. Although we are in the process of decommissioning the platform, we don't anticipate completion by 12/1. To be cautious, w…
-
**Describe the bug**
Vault is unable to disable completely a secret engine, which is now stuck in the middle of not being usable anymore and not completely disabled.
**To Reproduce**
Steps to…
-
In some cases, TLS auth can be preferable to AppRole (due to reusability for other purposes than just auth to Vault). Adding support for delivering TLS certificates would be more complex and risky (no…
-
**Describe the bug**
We have a development cluster of Vault that is a few years old, with a 3-out-of-7 Shamir seal structure. After having migrated it to raft, I took a raft snapshot via the AP…