Cloud Engineering Track | Festival Pavilion, Fort Mason Center
September 26, 2025 | 10:30 AM PT - 11:00 AM PT
Session detail
Kubernetes leaves secrets exposed by default. This session shows how to evolve from manual, insecure workflows to centralized, secure secrets management with HashiCorp Vault and OpenShift. We’ll cover real-world workflows for:
Securing app workloads with ephemeral secrets via VSO and the Secrets Store CSI Driver
Hardening the platform with upcoming KubeKMS support for etcd encryption
Strengthening OpenShift Service Mesh with Vault and cert-manager
Securing Quay.io with short-lived tokens via Vault and ESO
Level 200 - Intermediate to advanced content for those with cursory experience with HashiCorp product(s)
Location: Cloud Engineering Track 2