Consume KubeVault Secrets with CSI

Consuming Vault secrets using Secret Store CSI driver in K8s resources is way more simpler with the automation provided by KubeVault.

helm install kubevault oci://ghcr.io/appscode-charts/kubevault \
--version v2024.3.12 \
--namespace kubevault --create-namespace \
--set-file global.license=/path/to/the/license.txt \
--wait --burst-limit=10000 --debug
Consume KubeVault Secrets with CSI

Consume KubeVault Secrets with CSI

Secrets Store CSI Driver for Kubernetes secrets - Integrates secrets stores with Kubernetes via a Container Storage Interface (CSI) volume. It allows Kubernetes to mount multiple secrets, keys, and certs stored in enterprise-grade external secrets stores into their pods as a volume. Once the Volume is attached, the data in it is mounted into the container’s file system. KubeVault operator works seamlessly with Secrets Store CSI Driver. This is one of the recommended ways to mount Vault Secrets into Kubernetes resources along with Vault Agent Sidecar Injector. Secrets Store CSI Driver requires a SecretProviderClass which is a namespaced resource that is used to provide driver configurations and provider-specific parameters to the CSI driver. Writing these SecretProviderClass can be a tedious job, but KubeVault CLI lets you generate SecretProviderClass using simple CLI commands.

What They Are Talking About us

Trusted by top engineers at the most ambitious companies

Run Production-Grade Vault on Kubernetes FREE !

KubeVault is FREE to use on any supported Kubernetes engines. There is no up-front investment required. We offer a 30 days license FREE of cost to try KubeVault.