This reference platform Configuration for Vault defines necessary compositions to run a highly available Vault. Currently, this configuration only supports GCP.

It provides a platform API to provision fully configured GKE clusters, with secure networking, and a highly available Vault backed by GCS bucket and configured to auto unseal with Cloud KMS using GCP workload identity -- all composed using cloud service primitives from the Crossplane GCP Provider. App deployments can securely connect to the infrastructure they need using secrets distributed directly to the app namespace.

Quickstart Guide

To learn more checkout the GitHub repo that you can copy and customize to meet the exact needs of your organization!