portainer_data
volume created during installation. This database can be encrypted for additional security through the use of a secret provided when the Portainer Server is started. Encryption can be added during the initial installation or at a later date./root/secrets/portainer_key
. In this file enter a secret. This will be the key used to encrypt the Portainer database.docker run
command that mounts your secret in /run/secrets/portainer
:docker run
command may look like this:This is a secret
with your secret. This will create a secret named portainer_key
, which will be the key used to encrypt the Portainer database.portainer
service definition:portainer_key
secret created earlier. With the secret added, your full portainer
service definition may look like this:IAmASecretKey
with your secret. This will create a secret named portainer-key
, which will be the key used to encrypt the Portainer database.container
definition for the portainer
container. It should look something like this:volumeMounts
section, add a definition for the secret created earlier:volumes
definition for the spec
:portainer.yaml
with the name of your modified YAML file.