KMS Key Creation for Vault auto unseal #257

itzkumaran · 2022-01-11T21:40:39Z

Describe the solution you'd like
As of today, the KMS key creation process is manual outside the scope of the example - vault-auto-unseal and we are trying to bring this into Terraform. This adds Terraform source code for creating a KMS key for auto-unseal to work. This also provides a KMS key replication to another region.

Describe alternatives you've considered
Manually create the KMS key using AWS console in every region where we need them.

Additional context
This would be useful when you are deploying your vault services (community version) across multiple regions in a primary/warm standby setup.

The text was updated successfully, but these errors were encountered:

itzkumaran added the enhancement label Jan 11, 2022

itzkumaran mentioned this issue Jan 12, 2022

Add kms key creation for vault auto unseal #258

Open

6 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

KMS Key Creation for Vault auto unseal #257

KMS Key Creation for Vault auto unseal #257

itzkumaran commented Jan 11, 2022

KMS Key Creation for Vault auto unseal #257

KMS Key Creation for Vault auto unseal #257

Comments

itzkumaran commented Jan 11, 2022