Thanks @paolo,
This article is great, but what CSI driver provides as most cloud native and k8s native benefits, specially also the most secure 🔐 way of delivering secret to Pods makes it the best choice.
Regarding its below drawback, you mentioned, I think it can be mitigated if we get upstream contribution in that project to utilise per cloud integration for managed/workload identity to CSI Provider.
One big disadvantage is the network unavailability and pod rescheduling in case exceptional failures on CSP side, which lead to no secret volume being available.
Otherwise it's one of the best and most secure 🔐 option.
"Cannot utilize Microsoft Entra ID integrated security and managed identities for accessing managed services."
Regards
Abhishek Dadhich
Thanks for the feedback Abhishek. If you found this article any helpful, please give it a like, thanks 🙏
