Encrypt Secret Data at Rest
Starting in CN2 Release 22.1, Juniper supports encryption of secret data at rest. CN2 automatically encrypts secret data at rest in your Kubernetes cluster and encrypts any password that you configure. A secret is an object that contains a small amount of sensitive data such as a password, a token, or a key. Data at rest encryption is a cybersecurity practice of encrypting stored data to prevent unauthorized access.
Refer to the Kubernetes documentation titled Encrypting Secret Data at Rest for instructions on how to enable and configure this feature.