Authentication Methods for K8s

Akeyless support multiple option to authenticate your K8s cluster with Akeyless Vault.

To use K8s Auth method for authentication :

AKEYLESS_ACCESS_TYPE: "k8s"
AKEYLESS_ACCESS_ID: "p-XXXXX"
AKEYLESS_K8S_AUTH_CONF_NAME: "K8s_conf_name"

you need to provide one of the following:
AKEYLESS_GW_CONFIG_URL: "http://Your-GW:18888"`
or
AKEYLESS_API_GW_URL = "https://Your-GW:8080"`

📘
Zero Knowledge
While working with Customer Fragment for Zero Knowledge set AKEYLESS_API_GW_URL = "https://Your-GW:8080"

Universal Identity

AKEYLESS_ACCESS_TYPE: "universal_identity"
AKEYLESS_API_GW_URL: "https://Akeyless-gw-url" 
AKEYLESS_INIT_TOKEN: "<token>"

API Key

AKEYLESS_URL: "https://vault.akeyless.io"
# to use Akeyless-gw add:
# AKEYLESS_API_GW_URL: "https://Akeyless-gw-url" 
AKEYLESS_ACCESS_TYPE: "api_key"
AKEYLESS_API_KEY: "<acc_key>"
AKEYLESS_ACCESS_ID: "<acc_id>"

Azure Active Directory

AKEYLESS_URL: "https://vault.akeyless.io"
# to use Akeyless-gw add:
# AKEYLESS_API_GW_URL: "https://Akeyless-gw-url" 
AKEYLESS_ACCESS_TYPE: "azure_ad"
AKEYLESS_ACCESS_ID: "<acc_id>"
# optional
# AKEYLESS_AZURE_OBJ_ID: "<za-obj-id>"

AWS-IAM

AKEYLESS_URL: "https://vault.akeyless.io"
# to use Akeyless-gw add:
# AKEYLESS_API_GW_URL: "https://Akeyless-gw-url" 
AKEYLESS_ACCESS_TYPE: "aws_iam"
AKEYLESS_ACCESS_ID: "<acc_id>"

GCP Auth

AKEYLESS_URL: "https://vault.akeyless.io"
# to use Akeyless-gw add:
# AKEYLESS_API_GW_URL: "https://Akeyless-gw-url" 
AKEYLESS_ACCESS_TYPE: "gcp"
AKEYLESS_ACCESS_ID: "<acc_id>"
AKEYLESS_GCP_AUDIENCE: "akeyless.io"

📘Zero Knowledge

📘
Zero Knowledge