Key Manager service¶
MOSK Key Manager service (OpenStack Barbican) provides secure storage, provisioning, and management of cloud application secret data, such as Symmetric Keys, Asymmetric Keys, Certificates, and raw binary data.
Configuring the Vault backend¶
Parameter |
|
---|---|
Usage |
Specifies the object containing the Vault parameters to connect to Barbican. The list of supported options includes:
If the Vault backend is used, configure it properly using the following parameters: spec:
features:
barbican:
backends:
vault:
enabled: true
approle_role_id: <APPROLE_ROLE_ID>
approle_secret_id: <APPROLE_SECRET_ID>
vault_url: <VAULT_SERVER_URL>
use_ssl: false
Mirantis recommeds hiding the Note Since MOSK does not currently support the
Vault SSL encryption, set the |