lacework-global-787

Consider external secret storage (Manual)

Description

If you require more complex secret management, consider the use of an external secrets storage and management system instead of using Kubernetes Secrets directly.

Ensure the solution requires authentication to access secrets, has auditing of access to and use of secrets, and encrypts secrets. Some solutions also make it easier to rotate secrets.

Remediation

Refer to the secrets management options offered by the cloud service provider or a third-party secrets management solution.

References

https://kubernetes.io/docs/concepts/configuration/secret/
https://cloud.google.com/secret-manager/docs/overview

Consider external secret storage (Manual)​

Description​

Remediation​

References​

Consider external secret storage (Manual)

Description

Remediation

References