Skip to content

Home

Jump to bottom
Venkata Mutyala edited this page Apr 11, 2023 · 5 revisions

Prerequisites

Ensure all Vault pods are unsealed

kubectl get pods -n glueops-core-vault

Expected output 1/1 in the READY column:

image

Establish a connection to the vault cluster

kubectl -n glueops-core-vault port-forward svc/vault-ui 8200:8200

Allow our tools to use the self-signed vault certificate

Since we use a self-signed SSL certificate you must run export VAULT_SKIP_VERIFY=true otherwise you will get SSL errors.

FAQ

My Vault cluster is sealed. What do i do?

Reference the docs for the vault initialization module: https://github.com/GlueOps/terraform-module-kubernetes-hashicorp-vault-initialization

Where do i find my oidc_client_secret ?

When you deployed vault using the GlueOps Platform helm chart, you specified a secret for vault within the dex configuration.

Clone this wiki locally