Overview During a migration of our internal Jenkins controller from HTTP to HTTPS/TLS, several Jenkins pipelines running on Kubernetes agents began failing. These pipelines use dynamically provisioned agents created by…
In a modern DevOps infrastructure, operating an internal Public Key Infrastructure (PKI) is essential to secure communications between services. Instead of relying on self-signed certificates or external certificate authorities, organizations…
Deploying an internal certificate authority is only the first step in building a secure infrastructure.Once certificates start being issued, every system that communicates with services signed by the CA must…
In the previous sections we demonstrated how Kubernetes services can obtain certificates automatically using cert-manager and ACME, or manually using the Step CLI. However, many infrastructure services still run outside…
In the previous article we deployed an internal certificate authority using Step-CA running inside Kubernetes. That CA is now capable of issuing certificates for internal infrastructure. The next step is…
Modern infrastructure relies heavily on TLS certificates to secure communication between services. Kubernetes clusters, CI/CD pipelines, internal APIs, and development platforms all require trusted certificates to ensure encrypted and authenticated…
In this post, I will show you how to integrate Vault with Kubernetes secrets. There are other ways of integration, such as injecting secrets as a text file into the…
Hello, in this post, I want to show one of the ways we can use to run Ansible playbooks in the Jenkins pipeline. The method I chose was the simplest,…
In this post, I will show another step in using PODs/Containers in pipelines. Bringing together previous posts about using pipeline scripts in Jenkins – Pipeline source from GitLab., Jenkins –…
Hello. Still in the sequence of Jenkins x Kubernetes posts. In this one, I want to show the next step when it comes to Pods, Containers and Pipelines. I also…
devops-db.com