Red Hat Training
A Red Hat training course is available for OpenShift Container Platform
34.8. 解密数据
在数据存储层禁用加密:
- 将身份提供程序作为配置中的第一个条目放置:
kind: EncryptionConfig
apiVersion: v1
resources:
- resources:
- secrets
providers:
- identity: {}
- aescbc:
keys:
- name: key1
secret: <BASE 64 ENCODED SECRET>重启所有 API 服务器:
# master-restart api # master-restart controllers
运行以下命令来强制解密所有 secret:
$ oc adm migrate storage --include=secrets --confirm