hashicorp-vaultvault
Error initializing: context deadline exceeded Hashicorp Vault
We installed a 3 node Vault cluster in HA mode on a GKE cluster using this Git Repo.
Below is the status of Pods before initializing the vault.
We logged into the vault-0 pod and tried initializing the vault but received the below error.
Below is the status of the vault after we receive this error.
Below is the status of the PVC.
This shows that the vault has been initialized but we received an error instead of tokens and keys. We referred to this article for this error but no fate. Please help us to resolve this.
Solution
I think you're using it within a Private GKE Cluster.
If so, and you are using the injector, you need to open the tcp:8080 port to the controlplane.
Here is a little gcloud command to do it quickly.
MASTER_GKE_RULE=$(gcloud compute firewall-rules list --filter="name~YOURCLUSTERNAME-[0-9a-z]*-master" --format=json | jq -r '.[0] | .name')
gcloud compute firewall-rules update $MASTER_GKE_RULE --allow tcp:8080,tcp:10250,tcp:443,tcp:8443
Don't forget to replace YOURCLUSTERNAME with the actual name of your cluster.
If you wanna read more informations about this issue : Click here
- How to identify what paths can be accessed with what capabilities in hashicorp vault for a given token?
- AWX + Hashicorp Vault django.request Bad Request
- Why does HVAC does not see secrets in HashiCorp Vault?
- HashiCorp Vault 403 Permission Denied issue with Kubernetes Auth
- Unable to get airflow variables in dags from Vault secret backend
- Hashicorp vault - export key from one vault, import into another vault
- HashiCorp Vault to populate kubernetes secrets
- HASHICORP VAULT: How to read multiple items from a file and write them to Vault
- Hashicorp vault how to list all roles
- access property of an object using hash-vault-js
- Vault secrets list permission denied
- How can I encrypt data with an already generated AES 256 GCM 96 key (coming from Hashicorp Vault)?
- Access Denied on vault secrets
- hashicorp vault agent template fails when starts with "no known secret ID"
- Create a Vault UI user using the vault CLI
- Vault does not return token renewed by script
- Getting permission denied error while trying to access any vault secret engines using Spring boot application on kubernetes
- Environment variables concatenation issue with Vault agent-jnject in Kubernetes deployment
- Vault secret fetch using hvac python fails with TypeError where Type of response is <class 'requests.models.Response'>
- Detect when a secret changes in Hashicorp Vault
- My Vault policies does not allow me to create/update/delete secrets
- Vault scaling using Consul
- Hashicorp Vault cli return 403 when trying to use kv
- Cannot install Hashicorp vault in LinuxMint 21.3 : The repository does not have a Release file
- HashiCorp Transit Engine, what permission are required to read the public key?
- Vault Agent Injector - Use init container only (disable sidecar)
- How to call Hashicorp Vault from AWS Lambda in NodeJS with IAM Authentication
- How to use values in Vault annotation content in Helm Chart
- What is the difference between a HashiCorp Vault lease and token accessor?
- Is there a way to allow a user to change it's own password on Hashicorp's Vault UI