Learn how to use the Prometheus Operator with the new Vault Secrets Operator for Kubernetes to monitor secrets in a Grafana dashboard.

Monitoring the Vault Secrets Operator with Prometheus and Grafana

Learn how HashiCorp Terraform supports the deployment of Azure Linux container host for Azure Kubernetes Service (AKS).

Terraform adds support for Azure Linux container host for Azure Kubernetes Service 

Attending KubeCon EU, either in person or online? Check out what HashiCorp is doing and talking about at the event, and learn about recent Kubernetes-related product features.

What’s happening at KubeCon Europe 2023

A detailed comparison of three HashiCorp-supported methods for HashiCorp Vault and Kubernetes integration. 

Kubernetes Vault integration via Sidecar Agent Injector vs. Vault Secrets Operator vs. CSI provider

The Vault Secrets Operator implements a first-class Kubernetes Operator pattern for HashiCorp Vault along with a set of CRDs responsible for synchronizing Vault secrets to Kubernetes Secrets natively.

Vault Secrets Operator: A new method for Kubernetes integration

Here’s how to use HashiCorp Boundary to provide identity-based remote access and credential management for Kubernetes clusters.

How to Connect to Kubernetes Clusters Using Boundary

HashiCorp Consul 1.14 introduces the Consul dataplane, service mesh traffic management across cluster peers, and service failover enhancements. 

Consul 1.14 GA: Announcing Simplified Service Mesh Deployments

Get an overview of the most common ways to use HashiCorp Vault and Kubernetes together, and get a preview of a new method we're considering.

The State of Vault and Kubernetes, and Future Plans

HashiCorp Consul 1.14 enhances traffic management and failover, and adds a new deployment method: Consul dataplane. AWS Lambda updates and beta Windows VM support were also added.

Consul 1.14 Beta: Announcing Simplified Service Mesh Deployments

The release of vault-k8s 1.0 marks a great time to learn how HashiCorp Vault has integrated with Kubernetes in the past and what to look forward to in the future.

Vault, Kubernetes, and the Graduation of vault-k8s to Version 1.0

Consul API Gateway 0.4 introduces support for the new beta version of the Kubernetes Gateway API and HTTP path rewrites.

Consul API Gateway 0.4 Is Now Generally Available

A service mesh like HashiCorp Consul can be an essential part of applying zero trust security principles to modern, complex, Kubernetes deployments.

Zero Trust Security for Kubernetes with a Service Mesh 

HashiCorp Consul has evolved into a comprehensive networking platform that bolsters zero trust networking, works well with Kubernetes, and is remarkably easy to use.

3 Surprising Things Consul Service Mesh Can Do

Vault 1.11 focuses on improving Vault’s core workflows and making key features production-ready.

HashiCorp Vault 1.11 Adds Kubernetes Secrets Engine, PKI Updates, and More

The latest release of the HashiCorp Consul API Gateway allows users to generate multiple instances of a logical gateway — avoiding single points of failure.

Consul API Gateway 0.3 Introduces HA Logical Gateways

Cluster peering in Consul 1.13 offers a whole new model of how Consul handles cross-cluster federation.

Consul 1.13 Tech Preview: Cluster Peering

Add OpenTelemetry to your Java or .NET applications on Kubernetes and combine them with Consul service mesh metrics and traces for use with Prometheus and Jaeger.

Improve Observability with OpenTelemetry and Consul Service Mesh

Learn how platform and developer teams can collaborate effectively using CDK for Terraform, Terraform Cloud, and Sentinel to safely deploy EKS workloads to AWS. 

Enable Self-Service Amazon EKS Deploys with CDK for Terraform

Consul API Gateway 0.2, now generally available, enhances the gateway’s traffic management capabilities by adding cross-namespace reference policy enforcement. 

Consul API Gateway 0.2 Brings New Cross-Namespace Controls

This release strengthens zero trust security architecture by leveraging HashiCorp Vault to reduce secrets sprawl and automate server TLS certificate rotation.

Consul 1.12 Hardens Security on Kubernetes with Vault

For Kubernetes users looking to learn HashiCorp Nomad concepts and commands  — or vice versa — we’ve designed a cheat sheet for quick reference and a fast onramp.

The Kubernetes to Nomad Cheat Sheet

Configure the Secrets Store CSI driver with HashiCorp Vault to securely inject secrets into Flux or other GitOps tools on Kubernetes.

Manage Kubernetes Secrets for Flux with HashiCorp Vault

There were many popular Kubernetes sessions at this year’s HashiTalks. Watch the highlights from the virtual conference here.

Kubernetes Video Highlights from HashiTalks 2022

The Consul API Gateway has now reached its first GA release, adding TCPRoute support, Helm chart support, and a new HashiCorp Learn tutorial.

Consul API Gateway Now Generally Available

Using multiple dedicated service meshes can pose resource-inefficiency challenges — learn how HashiCorp Consul’s new Administrative Partitions can help solve them.

Achieving Multi-Tenancy with Consul Administrative Partitions

Waypoint 0.7 focuses on enhancing user experience with a significant UI redesign, improved support for more complex deployment workflows, and extensible CI integrations.

Waypoint 0.7 Reimagines UI and Extends Deployment Workflows

HashiCorp Consul 1.11 adds important new features: multi-tenancy with administrative partitions, new installation-and-management Consul Kubernetes CLI, and Vault integration on Consul Kubernetes.

Announcing HashiCorp Consul 1.11 - Now Generally Available

You can use HashiCorp Waypoint to help simplify and automate your Helm application deployments.

Deploying Helm Apps to Kubernetes with Waypoint and GitOps

Learn how HashiCorp’s Vault Agent can help you achieve zero trust security in a simple manner, consistently across all application teams. 

Why Use the Vault Agent for Secrets Management?

Learn how secrets management in Kubernetes compares to HashiCorp Nomad, and see why HashiCorp Vault is a powerful solution for both.

A Kubernetes User's Guide to HashiCorp Nomad Secret Management

The kubernetes_manifest resource has now graduated into the official Kubernetes provider as a beta, bringing support for CRDs and custom resources.

Beta Support for CRDs in the Terraform Provider for Kubernetes

Configure Kong Ingress Controller for Kubernetes with transparent proxy on HashiCorp Consul service mesh to manage traffic to and between your Kubernetes services.

Using HashiCorp Consul with Kong Ingress Controller for Kubernetes

Consul 1.10 can transparently intercept and redirect traffic to sidecar proxies in the service mesh to allow applications to be deployed without modification.

Transparent Proxy on Consul Service Mesh 

The HashiCorp Vault Helm chart has achieved Red Hat OpenShift Certification to help OpenShift users more readily deploy secrets management on Kubernetes.

HashiCorp Vault Achieves Red Hat OpenShift Helm Certification

Consul 1.10 adds exciting new features such as transparent proxy for service mesh, support for xDS v3, streaming, and observability enhancements.

Announcing Consul 1.10 GA

Learn how to use CSI to expose secrets on a volume within a Kubernetes pod and retrieve them using our Vault provider for the Kubernetes Secrets Store CSI Driver. 

Retrieve HashiCorp Vault Secrets with Kubernetes CSI

Learn about our plans for this year’s KubeCon Europe virtual conference and get CNCF- and Kubernetes-related updates on our products.

A Guide to HashiCorp at KubeCon Europe Virtual 2021

Learn how to use the Terraform Cloud Operator for Kubernetes to manage the infrastructure lifecycle through a Kubernetes custom resource.

New Terraform Tutorial: Deploy Infrastructure with the Terraform Cloud Operator for Kubernetes

Learn the equivalent terminologies, comparisons, and differentiations between HashiCorp Nomad and Kubernetes.

A Kubernetes User's Guide to HashiCorp Nomad

The HashiCorp Terraform Strategic Integrations team is pleased to announce the General Availability of the HashiCorp Terraform Cloud Operator for Kubernetes. 

Announcing General Availability of the HashiCorp Terraform Cloud Operator for Kubernetes 

See the recovery steps to protect your data and secrets during an extended outage using Kubernetes and HashiCorp Consul. 

Disaster Recovery for HashiCorp Consul on Kubernetes

This new tutorial collection uses a case study about a fictional company to illustrate a  monolith to microservices migration with HashiCorp Consul and Kubernetes.

New Learn Tutorials: Migrating to Microservices with Consul on Kubernetes

Discover how the Kubernetes and Kubernetes-alpha providers for HashiCorp Terraform allow users to specify whether they must meet certain conditions before they successfully apply a resource, giving users more control over their Kubernetes infrastructure.

Wait Conditions in the Kubernetes Provider for HashiCorp Terraform 

Check out the latest updates and new additions to our collection of tutorials for deploying Vault on Kubernetes. 

Updates to the HashiCorp Learn's Vault-Kubernetes Collection

Seamless application integration with a fully functional RBAC system.

Gating Access to Kubernetes API & Workloads with HashiCorp Boundary

Version 2.0 of the Kubernetes and Helm providers includes a more declarative authentication flow, alignment of resource behaviors and attributes with upstream APIs, normalized wait conditions across several resources, and removes support for Helm v2.

Announcing Version 2.0 of the Kubernetes and Helm Providers for HashiCorp Terraform 

Kubernetes Initializer built by Ambassador Labs provides a new experience for simplifying the deployment of Ambassador and Consul in a Sandbox Kubernetes environment. 

Getting Started with Ambassador and Consul Using Kubernetes Initializer

Announcing General Availability of HashiCorp Consul 1.9

While Kubernetes is leading the orchestration market, this blog explains why a growing number of customers choose Nomad as an alternative or use each tool where most appropriate. 

Nomad, Kubernetes, and a Pragmatic Look at Choosing Orchestrators

Consul 1.9 now provides OpenShift support for Kubernetes deployments with a secure-by-default configuration.

Introducing OpenShift Support for HashiCorp Consul on Kubernetes 

Consul 1.9 adds Custom Resource Definition support, allowing users to interact with Consul using a more Kubernetes-native experience.

Custom Resource Definitions for HashiCorp Consul on Kubernetes 

In this blog, we round-up all of the KubeCon related activities HashiCorp will be doing this week at the virtual conference and adjacent to it. 

HashiCorp and KubeCon North America Virtual

In preparation for KubeCon 2020, this blog explores how features in Consul 1.9 help enhance the experience of running Consul on Kubernetes. 

KubeCon 2020: HashiCorp Consul Further Expands Kubernetes Support

Consul 1.9 adds more service mesh features including app-aware intentions, visualization enhancements, and custom resource definitions.

Announcing HashiCorp Consul 1.9

HashiCorp Consul Service (HCS) on Azure can be launched directly from the Azure Portal, but you can also manage HCS using Terraform Cloud. 

Managing HCS with Terraform Cloud

Explore a new collection of Terraform tutorials that can help you through your Kubernetes adoption journey.

New Terraform Tutorials on Provisioning and Managing Kubernetes Clusters

Learn about the advanced features of HashiCorp's Consul service mesh that are valuable to both infrastructure operators and developers.

HashiCorp Consul Ingress Gateways and L7 Traffic Management in Kubernetes

Recently, a SaaS company in the operations software industry needed the ability to provision and manage multiple Kubernetes clusters both on-premises and in various public clouds. Redapt used HashiCorp Terraform and various Terraform providers to make the process efficient, repeatable, and recoverable in case of disaster.

Using Terraform to Manage Multiple Kubernetes Clusters On-Premises and in the Cloud

Consul has a set of features to support first-class integration with Kubernetes. In this new hands-on tutorial, learn how to secure Consul and registered services on Kubernetes using the official HashiCorp Consul Helm chart for Kubernetes.

 Secure Consul and Registered Services on Kubernetes

In this video, we demonstrate how HashiCorp Consul allows operators to quickly connect applications across multiple clouds (on-premises, Google Cloud, Amazon AWS) as well as multiple runtime environments (Virtual Machine, Kubernetes).

Making a Mesh in Multi-Cloud with Consul

Learn how to deploy and use HashiCorp Consul service mesh capabilities on a local Kubernetes cluster with a new set of hands-on tutorials.

Get Started with Consul Service Mesh on Kubernetes

We are pleased to announce a new version of the Kubernetes Provider for HashiCorp Terraform. 

Deploy Any Resource with the Kubernetes Provider for Terraform

In Consul 1.8, we introduced three new service mesh features ingress, terminating, and WAN federation via mesh gateways. In this blog, we're going to explain how WAN federation can be used to connect multiple Kubernetes clusters across various environments.

Connecting Kubernetes Clusters with HashiCorp Consul WAN Federation

This demo explores how to use the Terraform Foundational Policies Library to apply pre-written policies, in accordance with the Center for Internet Security benchmarks, on a HashiCorp configuration for Google Cloud Platform’s flavor of Kubernetes, GKE.

Using the Terraform Foundational Policies Library with GKE

Learn how to migrate application workloads from VMs into Kubernetes by leveraging Consul and its L7 Traffic Management features. By establishing a common service mesh between both runtime platforms, we enable the ability to take a policy0driven approach to security and application communications.

Migrating Application Traffic between VMs and Kubernetes with HCS on Azure

In this article, we will see how to automate the creation and management of the lifecycle of TLS certificates in a Kubernetes environment with HashiCorp Vault and its PKI secret engine as well as JetStack cert-manager.

Kubernetes Traffic Ingress with HashiCorp Vault PKIaaS and JetStack Cert-Manager

Kubernetes users can now bring Vault into their Kubernetes environment using the Vault Helm chart to manage secrets. Get started with hands-on tutorials that demonstrate operating Vault in a variety of modes within Kubernetes.

Learn How to Run Vault on Kubernetes

We are pleased to announce the alpha release of HashiCorp Terraform Operator for Kubernetes. The new Operator lets you define and create infrastructure as code natively in Kubernetes by making calls to Terraform Cloud.

Creating Workspaces with the HashiCorp Terraform Operator for Kubernetes

Are you a HashiCorp tools practitioner? Do you want to help shape the direction of HashiCorp Consul running in public cloud? HashiCorp Consul Service (HCS) on Azure is now available!

Introduction to HashiCorp Consul Service on Azure with AKS

In this blog post, we will look at how the Vault integration for Kubernetes allows an operator or developer to use metadata annotations to inject dynamically generated database secrets into a Kubernetes pod. The integration automatically handles all the authentication with Vault and the management of the secrets, the application just reads the secrets from the filesystem.

Dynamic Database Credentials with Vault and Kubernetes

This blog highlights some of the capabilities that HashiCorp Consul can bring to Kubernetes environments and some of the key integrations from our ecosystem that can be deployed in conjunction with Consul.

Exploring the HashiCorp Consul Ecosystem for Kubernetes

We're excited to announce multiple features that deeply integrate HashiCorp Vault with Kubernetes. This post will share the initial set of features that will be released in the coming months.

What's Next for Vault and Kubernetes

This week we're releasing an official Helm Chart for Vault. Using the Helm Chart, you can start a Vault cluster running on Kubernetes in just minutes. This Helm chart will also be the primary mechanism for setting up future roadmapped Vault and Kubernetes features. By using the Helm chart, you can greatly reduce the complexity of running Vault on Kubernetes, and it gives you a repeatable deployment process in less time (vs rolling your own).

Announcing the HashiCorp Vault Helm Chart

We’re excited to share some new resources on the learn platform: a Kubernetes getting started track, more guidance on configuring ACLs, and a streamlined troubleshooting guide.

Introducing New Consul Learn Resources: Kubernetes Track, ACLs, Ambassador, and Troubleshooting

Learn to use features of Vault 1.1 including agent caching, replication, auto-unseal, and Kubernetes integration.

Vault Learning Resources: 1.1, Caching, Kubernetes, Unseal, Azure, Replication

Learn from hands-on labs to build proficiency with Vault 1.0, auto-unseal, Kubernetes, and other secrets management features.

Vault Learning Resources: 1.0, Auto-unseal, Agent, Kubernetes

In the last few weeks, HashiCorp education team launched the new Consul learn platform and published several hands-on guides to help you easily integrate Consul into your multi-cloud, microservice-based infrastructure.

Introducing New Consul Learn Platform and New Resources: Kubernetes, AWS Cloud Map, and Many More

As a follow-up to the HashiCorp Consul plus Kubernetes blog series, this blog highlights our recent work to provide first-class support for Kubernetes across HashiCorp product line.

Announcing First-Class Kubernetes Support for HashiCorp Products

We're releasing HashiCorp Consul + Kubernetes features every week. 

This week we're releasing the service catalog sync functionality to sync Kubernetes services to the Consul catalog and vice versa. This enables cross-cluster or platform service discovery using the native service discovery tooling expected. Additionally, a central catalog allows organizations to gracefully migrate workloads into or out of Kubernetes.

HashiCorp Consul and Kubernetes Service Catalog Sync

We're releasing HashiCorp Consul + Kubernetes features every week. 

This week we're showcasing the auto-join feature to enable nodes running inside and outside of Kubernetes to join a Consul cluster running on Kubernetes. Rather than joining with a static IP address or DNS entry, the auto-join feature uses the Kubernetes API to discover pods running Consul agents, and joins those pods.

Kubernetes Auto-join for Consul

We're releasing HashiCorp Consul + Kubernetes features every week. This week we're releasing the official Consul Helm Chart for running and configuring Consul on Kubernetes.

Using the Helm chart, you can start a complete Consul cluster on Kubernetes in minutes. The Helm chart can setup and configure a Consul server cluster, client agents, or both. The Helm chart will also be the primary mechanism for setting up future Consul and Kubernetes features.

Announcing the HashiCorp Consul Helm Chart

We're excited to announce multiple features that deeply integrate HashiCorp Consul with Kubernetes. 

Announcing HashiCorp Consul + Kubernetes

HashiCorp is proud to announce day-zero support for AWS EKS. AWS EKS is a managed service that makes it easier for users to run Kubernetes on AWS across multiple availability zones with less manual configuration. This blog explores how to set up an EKS configuration using Terraform.

Announcing Terraform Support for Kubernetes Service on AWS

At Banzai Cloud we are building an open source next generation platform as a service, Pipeline - built on Kubernetes. With Pipeline we provision large multi-tenant Kubernetes clusters on all major cloud providers and deploy different workloads to these clusters. We needed to find an industry standards based way for our users to publish and interact with protected endpoints and at the same time provide dynamic secret management for all the different applications we support, all these with native Kubernetes support. After several proof-of-concepts, we chose Hashicorp Vault. 
In this post we’d like to highlight how we use Vault and provide technical insight into the available options.

Secure Kubernetes Deployments with Vault and Banzai Cloud 

Using HashiCorp Terraform Enterprise and the Kubernetes provider we can apply fine-grained policy enforcement using Sentinel to Kubernetes resources, before the changes to the resources are applied on the cluster. This blog post explores using Sentinel in Terraform Enterprise to manage Kubernetes clusters and enforce Kubernetes service types and namespace naming conventions.

Applying Policy as Code to Kubernetes Resources

HashiCorp Terraform is an open source tool that enables users to provision any infrastructure using a consistent workflow. While Terraform can manage infrastructure for both public and private cloud services, it can also manage external services like GitHub, Nomad, or Kubernetes pods. This post highlights the new Terraform Kubernetes provider which enables operators to manage the lifecycle of Kubernetes resources using declarative infrastructure as code.