I'd like to use Salt to distribute SSL certs to web servers. What's a good way to have on disk encryption of those /srv/* files such that the salt-master service can read them [without|with little] manual intervention? Thank you in advanced for your input. Edit: This server would be a VM on a Cloud like GCP or Azure.
[link][3 comments]