Talk about our experience on the setup of a Container Service with the HashiCorp stack and some grains of Saltstack. We'll show how we secured the systems.
All is automated to deliver TLS certificates to all services and backend during each steps of bootstrapping the service, with ACL, roles and PKIs plus the auto-unseal service of Vault. An new environment can be boostraped from zero with a few human interactions due to the ACL security.
YoanBlanc - @greut
Marc-AurèleBrothier - @marcaurele
Jean-PhilippeMenil - @jpmenil