Step 6: Deploy Vault
- Make sure you are in vault folder and run below command
helm install vault hashicorp/vault --namespace vault -f values.yaml --version 0.10.0
- Before you run below command make sure you change the hostname in the ingress.yaml file to the domain name of the master server. This is very critical.
kubectl apply -f ingress.yaml -n vault
At this point, your output should something like this
Note: See this status of pod/vault-0 which is in 0/1 READY status. Now go to http://{hostname}:443/ on the web browser and follow below steps.
- Type key shares as 5 and key threshold as 3 and click on initialize
- Now, download the keys and click on continue to unseal
- Now, run below command and enter first key from the keys_base64 section of the downloaded file
kubectl exec -ti vault-0 -n vault -- vault operator unseal
Repeat this step 2 more times by using 2nd and 3rd keys as passwords from keys_base64 section of the downloaded file
- Go to http://{hostname}:443/, it will look something like this
- Paste root_token from the downloaded file in token field and click on sign in. If you get an page similar to below then your vault is deployed successfully.
As you can see from the below screenshot, the vault-0 pod which was previously in 0/1 READY status is now in 1/1 READY status
