This repository contains the official enclaive Helm chart for installing and configuring vHSM, comprising the key management vHSM and attestation verification service Nitride, on Kubernetes. This chart supports multiple use cases of vHSM and Nitride on Kubernetes depending on the values provided.
For full documentation on this Helm chart along with all the ways you can use vHSM with Kubernetes, please see the vHSM documentation.
To use the charts here, Helm must be configured for your Kubernetes cluster. Setting up Kubernetes and Helm is outside the scope of this README. Please refer to the Kubernetes and Helm documentation.
The versions required are:
- Helm 3.6+
- Kubernetes 1.32+ - This is the earliest version of Kubernetes tested. It is possible that this chart works with earlier versions, but it is untested.
To install the latest version of this chart, retrieve it from Enclaive Harbor:
helm template oci://harbor.enclaive.cloud/vhsm/vhsm \
--version 0.29.2 \
--set server.extraEnvironmentVars.ENCLAIVE_LICENCE="$licence"Please see the many options supported in the values.yaml file.