Where to store service account keys securely ?
Issue
- We are enabling observability and setting up thanos GCP secret . The GCP service account needs permissions on the Google Cloud Storage/bucket to centrally store the logs from the clusters ACM managing . Downloading service account keys and storing them in secrets is not what we consider secure.
Environment
- ACM
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.