VM deployment for facilitator services

Facilitator services include:
* IdP (FreeIPA)
* Workload identities (SPIRE)
* Secrets management (Vault)
* Certificate management (step-ca or Vault PKI engine)

FreeIPA and SPIRE server should be deployed to VM following Vault deployment. In k8s, deploy keycloak and SPIRE agents. Use, with a provided pre-provisioned intermediare cert, prior to installing k8s.

Prefer tools that store state, e.g. Terraform, for provisioning:
* [keycloak terraform provider](https://github.com/keycloak/terraform-provider-keycloak)
* [docker terraform provider](https://registry.terraform.io/providers/kreuzwerker/docker/latest/docs)
* [vault terraform provider](https://registry.terraform.io/providers/hashicorp/vault/latest/docs)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

VM deployment for facilitator services #32

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

VM deployment for facilitator services #32

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions