Deploy Applications

The is section describes the supported methods to connect to targets such as databases or web services:

Method

Description

Benefit

Conjur sidecar

Use the sidecar to authenticate the pod to Conjur. Use the API or Summon to fetch the secrets to create connection.

Generic method to connect to targets. You can use this method for any target system.

Secretless Broker Sidecar

Use the built in capabilities of Secretless to authenticate to the pod with Conjur and then open a connection to a supported target.

For details, see Service Connectors.

New secure approach for application connection where the secret is never exposed to the app.

CyberArk Secrets Provider for Kubernetes

Use an init container to dynamically populate K8s secrets, with the secrets required by the pod, from Conjur.

Use secrets stored and managed in the CyberArk Vault using Conjurto consume them as Kubernetes Secrets leveraging PAS security while seamlessly deploying Kubernetes containers .