Vault/Consul with LUKS-encrypted disk?

[Shawn Johnson]

Good afternoon everyone!

Has anyone done any work in the area of using Vault/Consul to mount LUKS-encrypted disks?  It would be useful to utilize Vault and Consul in a way that would allow and disallow systems that are members of the Consul HA environment to mount their locally available encrypted disk(s).

Thanks!

Shawn

[Michael Fischer]

I'm interested in the same thing.   Provided you use the generic secrets backend, the secret value itself should not expire.  How the server will authenticate to Vault to get the token is still in question, though.

--
This mailing list is governed under the HashiCorp Community Guidelines - https://www.hashicorp.com/community-guidelines.html. Behavior in violation of those guidelines may result in your removal from this mailing list.
 
GitHub Issues: https://github.com/hashicorp/vault/issues
IRC: #vault-tool on Freenode
---
You received this message because you are subscribed to the Google Groups "Vault" group.
To unsubscribe from this group and stop receiving emails from it, send an email to vault-tool+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/vault-tool/01fa8336-1c6c-4b63-9d41-0392db4f1d78%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.