Deploy Applications

This section describes the supported methods to connect to targets such as databases or web services:

Method	Description	Benefit
Kubernetes Authenticator Client	Use to authenticate the pod to DAP. Use the API or Summon to fetch the secrets to create connection.	Generic method to connect to targets. You can use this method for any target system.
Secretless Broker Sidecar	Use the built in capabilities of Secretless to authenticate to the pod with DAP and then open a connection to a supported target. For details, see Secretless Service Connectors.	New secure approach for application connection where the secret is never exposed to the app.
CyberArk Secrets Provider for Kubernetes	Use an init or application container to dynamically populate K8s secrets, with the secrets required by the application pod, from DAP.	Use secrets stored and managed in the CyberArk Vault using DAP to consume them as Kubernetes Secrets leveraging PAS security while seamlessly deploying Kubernetes containers.

Method

Description

Benefit

Kubernetes Authenticator Client

Use to authenticate the pod to DAP. Use the API or Summon to fetch the secrets to create connection.

Generic method to connect to targets. You can use this method for any target system.

Secretless Broker Sidecar

Use the built in capabilities of Secretless to authenticate to the pod with DAP and then open a connection to a supported target.

For details, see Secretless Service Connectors.

New secure approach for application connection where the secret is never exposed to the app.

CyberArk Secrets Provider for Kubernetes

Use an init or application container to dynamically populate K8s secrets, with the secrets required by the application pod, from DAP.

Use secrets stored and managed in the CyberArk Vault using DAP to consume them as Kubernetes Secrets leveraging PAS security while seamlessly deploying Kubernetes containers.