堆栈内存溢出
  简体   繁体   English

如何在领事(Hashicorp-consul)中将保险库(Hashicorp-vault)注册为服务,我使用的是kubernetes?

[英]How to register vault (Hashicorp-vault) as a service in consul (Hashicorp-consul), I am using kubernetes?

 原文  2019-04-11 06:01:16       service/ kubernetes/ consul/ hashicorp-vault

问题描述

I'm running vault and consul as pods in kubernetes, while I'm checking consul catalog service it shows consul alone.我在 kubernetes 中将 vault 和 consul 作为 pod 运行,而我正在检查consul catalog service它仅显示consul

How can I register vault as a service ?如何将vault as a service注册vault as a service

I'd tried with the following link, but it didn't work.我曾尝试使用以下链接,但没有奏效。 https://learn.hashicorp.com/consul/getting-started/services https://learn.hashicorp.com/consul/getting-started/services

2 个解决方案

解决方案1
 2 已采纳  2019-04-15 04:50:38

For registering vault as a service you will have to do the following steps要将保管库注册为服务,您必须执行以下步骤

  1. Create a file and write this {"service": {"name": "vault", "tags": ["vault-tag"], "port": 8200}} into it.创建一个文件并将此{"service": {"name": "vault", "tags": ["vault-tag"], "port": 8200}}写入其中。 Name it as vault.json将其命名为vault.json
  2. Now, enter this command consul services register vault.json现在,输入这个命令consul services register vault.json
  3. You can now see that vault is registered as a service您现在可以看到保管库已注册为服务Vault 注册和检查 consul 目录服务

解决方案2
 1  2020-04-17 23:53:20

Vault will automatically register with consul when using consul as a backend datastorage.当使用 consul 作为后端数据存储时,Vault 会自动向 consul 注册。 If you are using one of the other storage options you have 2 ways to do it:如果您使用其他存储选项之一,则有两种方法可以做到:

Vault >1.4保险库 >1.4

If you have vault 1.4 or newer, you can add the following to the vault config to automatically register the vault service in consul如果您有 vault 1.4 或更高版本,您可以将以下内容添加到 vault 配置中以在 consul 中自动注册 vault 服务

service_registration "consul" {
  address      = "127.0.0.1:8500"
}

Vault < 1.4保险库 < 1.4

Assuming you are running vault with https on port 8200假设您在端口 8200 上使用 https 运行保管库

{
  "service": {
    "checks": [
      {
        "http": "https://vault1.example.com:8200/v1/sys/health",
        "id": "port",
        "interval": "10s",
        "name": "vault running on port 8200",
        "timeout": "1s"
      }
    ],
    "enable_tag_override": false,
    "id": "vault",
    "meta": {
      "meta": "Vault"
    },
    "name": "vault",
    "port": 8200,
    "tags": []
  }
}

Note This won't provide the dynamic tags like active or standby that you get automatically with the other options.注意这不会提供动态标签,如使用其他选项自动获得的activestandby https://www.vaultproject.io/docs/configuration/service-registration/consul https://www.vaultproject.io/docs/configuration/service-registration/consul

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 有没有办法将HashiCorp Vault作为Windows服务运行? - Is there a way to run HashiCorp Vault as a Windows Service? hashicorp 领事的日志文件在哪里? - Where is the log files for hashicorp consul? 如何在Consul中将PHP应用程序注册为服务 - How to register PHP application as a service in Consul 带有 consul 和 docker swarm EE 的服务网格 - Service mesh with consul and docker swarm EE 领事-外部服务注册超过一项服务 - Consul - External service registration with more than 1 service 通过意图限制从启用领事连接的服务到非领事连接服务的通信? - Restricting communication from a service which is consul connect enabled to non consul connect service through intention? 从Service Fabric访问Azure Key Vault上的机密 - Accessing Secrets on Azure Key Vault from Service Fabric 如何使用installAnywhere在LINUX中注册服务 - How to register Service in LINUX using installAnywhere 领事:在不知道现有成员知识产权的情况下加入 - Consul: join without knowing IP of existing members 领事服务器节点与客户端节点 - Consul Server node vs client node
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM