Please enable JavaScript.
Coggle requires JavaScript to display documents.
Vault - Coggle Diagram
Vault
Deployment
Location
VMs
Kubernetes
Unseal
Manual (possible with transit unseal in longer term)
Auto-unseal
KMS (AWS, Azure...)
Transit unseal
Availability
Back-ups
Monitoring/Escalation
Audit logging?
Not needed
File system
Secrets replication
Hashi Vault everywhere
Azure Key Vault + Scripting
No replication (solution per environment)
Administration
Access control
Number of key stores
Roles & Responsibilities
Tooling integration?
Data Storage
Consul
Raft
...
Kubernetes integration
Vault agent injector
Vault K8S authentication engine
Secrets Store CSI Driver
External-secrets