Home > front end >  Do EKS Secrets are encrypted by default?
Do EKS Secrets are encrypted by default?

Time:10-25

I was going by this update for EKS enter image description here

CodePudding user response:

short answer, yes it encrypted at rest

The answer is yes, the data stored by etcd is encrypted at rest.

enter image description here

AWS EKS is a managed Kubernetes offering. Kubernetes control plane components such as API Server, and ETCD are installed, managed, and upgraded by AWS. Hence you can neither see these components nor can exec into these components.

enter image description here

The below article also shows how to get cloud trail events when Kubernetes secrets are decrypted using KMS.

eks-encryption

Ensure AWS EKS cluster has secrets encryption enabled

Page link:https//www.codepudding.com/frontend/587561.html

Prev:How to make Deployment, Ingress and Service Yaml file on one file
Next:gitlab: unable to access git repository: Operation timed out
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding