Is is possible to access keyvault in another tenant, different from where AKS cluster is hosted in?

Azure / kubernetes-keyvault-flexvol

Azure keyvault integration with Kubernetes via a Flex Volume

MIT License

253 stars 83 forks source link

Is is possible to access keyvault in another tenant, different from where AKS cluster is hosted in? #194

Open epseattle opened 4 years ago

epseattle commented 4 years ago

I have a scenario to access secrets stored in a keyvault in a different tenant/subscription, other than the one AKS cluster lives in.

I know this is impossible for some cases, (i.e., accessing through ARM template deployment). I was wondering if we have similar restrictions in flex vol.

Thanks :)

taasest8 commented 4 years ago

Hello Evan

this works, our AKS Clusters are in different Subscriptions and different Tenants as their Keyvaults and both works.

Cheers, Stefan