Open l4z41 opened 2 months ago
Thank you for your contribution! This issue has been automatically marked as stale
because it has no recent activity in the last 60 days. It will be closed in 20 days, if no further activity occurs. If this issue is still relevant, please leave a comment to let us know, and the stale
label will be automatically removed.
Hi folks, I'm testing the HSM integration from vault-operator with a Nitrokey HSM which works with following example of yours. Here is a logs excerpt
kubectl logs -f vault-0 bank-vaults
Data is written to HSM
pkcs11-tool --list-objects
Additional thing is I switched the
serviceType: LoadBalancer
which exposes vault to external IP address so that I have an UI available.Now to the my main question: How do I login with new vault instance as vault-root is saved to HSM or create an admin token for further configuration? Any pointer in the right direction is much appreciated.
I tried to read out the value which gives me gibberish
pkcs15-tool --read-data-object vault-root -o vault-root
pkcs11-tool --read-object --type data --label vault-root --pin XXXXXXX --output-file vault-root