Skip to content

Encryption

Configure Kubernetes Encryption

Karina supports configuring encryption providers for stored secrets.

This is configured by supplying an encryption provider configuration file (look here for an example).

Update the kubernetes.encryption section with the config file:

kubernetes:
  encryption:
    encryptionProviderConfigFile: ./encryption-config.yaml

Warning

Note that encryption options are only used on provisioning, to update or add auditing to an existing cluster the configuration needs to be updated and then all master nodes rolled.

See the official Kubernetes documentation for the configuration file and the various providers that can be configured.