Tag : encryption

Photo by Markus Winkler on Unsplash Today, we made an attempt to encrypt a persistent volume in a BOSH deployment using a KMS key and experienced an odd error which was not obvious on how to debug. Hopefully, after reading this you’ll be able to identify and quickly fix your problem if you run into

Credhub keeps your credentials out of your configuration files.  On a recent project, I was adding certificates and their private keys to a CredHub instance so that Concourse could retrieve them to configure and then deploy a Cloud Foundry foundation that would then use these certificates. To do this, I ran: credhub set –name /path/to/certificate

If you’ve ever deployed Cloud Foundry via BOSH, you know how complicated BOSH’s deployment manifests can be – thousands of lines, many properties, many of which are repeated. This problem gets compounded when you start to host multiple copies of your BOSH deployments, such as for a sandbox, preproduction, and prod environment. Many of these