CrowdStrike


cat secrets.yaml | kubeseal --format=yaml --cert ~/dins/fra45.pem > sealed_secret.yaml

registry.aws96.srs.lab.nordigy.ru/mirror/devops/falcon-sensor

kubeseal --fetch-cert --context LAB_AWS96 --controller-namespace=sealed-secrets --controller-name=sealed-secrets > aws96.pem
kubeseal --fetch-cert --context STAGE_DCA22 --controller-namespace=sealed-secrets --controller-name=sealed-secrets > dca22.pem
kubeseal --fetch-cert --context PRO_PDX06 --controller-namespace=sealed-secrets --controller-name=sealed-secrets > pdx06.pem

cat /Users/denisgorokhov/dins/code/cprc-gitops/clusters/lab/aws-ap-southeast-1-sin40-eks01/crowdstrike-falcon-sensor/secrets.yaml | kubeseal --format=yaml --cert ~/dins/fra45.pem > sealed_secret.yaml

cat /Users/denisgorokhov/dins/code/cprc-att-gitops/clusters/prod/aws-us-east-1-aex07-eks01/crowdstrike-falcon-sensor/secterts.yaml | kubeseal --format=yaml --cert ./aex07.pem > /Users/denisgorokhov/dins/code/cprc-att-gitops/clusters/prod/aws-us-east-1-aex07-eks01/crowdstrike-falcon-sensor/sealed_secret.yaml
apiVersion: v1
data:
  FALCONCTL_OPT_CID: MTVFRDdEMTFFM0UxNDczMEIwRERCMUM5RUFCQjFGMTEtNTk=
kind: Secret
metadata:
  name: falcon-secrets
  namespace: crowdstrike
type: Opaque
echo -n '15ED7D11E3E14730B0DDB1C9EABB1F11-59' | base64
echo -n '8D8C82121CAF42DFACF09811C5AA72CE-73' | base64

---

keeped just in case

cat ces-secrets.yaml | kubeseal --format=yaml --cert /Users/denisgorokhov/dins/clustercerts/dca22.pem > ces-secrets-sealed.yaml

kubeseal --fetch-cert --context PRO_DCA06 --controller-namespace=sealed-secrets --controller-name=sealed-secrets > dca06.pem
cat ces-secrets.yaml | kubeseal --format=yaml --cert /Users/denisgorokhov/dins/clustercerts/dca06.pem > ces-secrets-sealed.yaml

source /Users/denisgorokhov/dins/code/aws_authenticator/bin/aws_init.sh -t 3600 -l syd07 -u denis.a.gorokhov
k config use-context PRO_SYD07



aws eks --region ap-southeast-2 update-kubeconfig --name syd07-c01-eks01


kubectl config rename-context arn:aws:eks:ap-southeast-2:580852489803:cluster/syd07-c01-eks01 PRO_SYD07
PreviousSealed SecretsNextWebhook

Last updated

Was this helpful?