DigitalOcean

Report this

What is the reason for this report?
Tech Talk

Managing Kubernetes Secrets: Comparing External Secrets Operator and Secrets Store CSI Driver

Updated on May 10, 2022
Tech Talks
Kubernetes
Kim SchlesingerDaniel Hix

By Kim Schlesinger and Daniel Hix

Managing Kubernetes Secrets: Comparing External Secrets Operator and Secrets Store CSI Driver

About the Talk

There are many ways to keep your application API keys, tokens, and passwords confidential in Kubernetes, but choosing the right technique can feel overwhelming.

Explore the benefits of using an external secrets provider like HashiCorp Vault. We’ll compare and contrast two techniques for using Vault to store and share secrets with a Kubernetes cluster. You’ll come away from this talk with a better understanding of how to use Vault to manage secrets in Kubernetes.

What You’ll Learn

  • Benefits of using external secrets provider
  • How to use the Kubernetes External Secrets Operator with HashiCorp Vault
  • How to use the Kubernetes Secrets Store CSI Driver with HashiCorp Vault
  • Benefits and drawbacks of the External Secrets Operator and the Secrets Store CSI Driver

This Talk Is Designed For

  • Anyone interested in Kubernetes
  • Kubernetes administrators
  • Application developers who want to ensure their application secrets are secure

Prerequisites

  • Basic knowledge of Kubernetes
  • Some familiarity with Kubernetes Secrets a plus

Resources

How To Securely Manage Secrets with HashiCorp Vault on Ubuntu 20.04

Secrets Store CSI Driver

Mount Vault Secrets through Container Storage Interface (CSI) Volume

External Secrets Operator

Thanks for learning with the DigitalOcean Community. Check out our offerings for compute, storage, networking, and managed databases.

Learn more about our products

About the author(s)

Kim Schlesinger
Kim Schlesinger
Author
Developer Advocate
See author profile

I'm a developer advocate at DigitalOcean focusing on Kubernetes and other Cloud Native technologies

See author profile
Daniel Hix
Daniel Hix
Author
Software Engineer 2 | Storage
See author profile

I build things at DigitalOcean that make storage in the cloud work, and specifically I work with Kubernetes to enable workload orchestration.

See author profile
Category:
Tech Talk
Tags:
Tech Talks
Kubernetes

Still looking for an answer?

Ask a questionSearch for more help
Was this helpful?
Leave a comment...

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign in/up to comment
Creative CommonsThis work is licensed under a Creative Commons Attribution-NonCommercial- ShareAlike 4.0 International License.
Join the Tech Talk
Success! Thank you! Please check your email for further details.

Please complete your information!

Become a contributor for community

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Sign Up

DigitalOcean Documentation

Full documentation for every DigitalOcean product.

Learn more

Resources for startups and SMBs

The Wave has everything you need to know about building a business, from raising funding to marketing your product.

Learn more

Get our newsletter

Stay up to date by signing up for DigitalOcean’s Infrastructure as a Newsletter.

New accounts only. By submitting your email you agree to our Privacy Policy

The developer cloud

Scale up as you grow — whether you're running one virtual machine or ten thousand.

Get started for free

Sign up and get $200 in credit for your first 60 days with DigitalOcean.*

*This promotional offer applies to new accounts only.

© 2025 DigitalOcean, LLC.Sitemap.