Interview Questions/Phone Screen/ConfigMap vs Secret in Kubernetes
IntermediatePhone
2 min

ConfigMap vs Secret in Kubernetes

KubernetesConfigurationSecurity
Advertisement
Interview Question

What is the difference between a ConfigMap and a Secret in Kubernetes, and when do you use each?

Key Points to Cover
  • ConfigMap stores non-sensitive configs; Secret stores sensitive data (base64 encoded)
  • Secrets can be backed by KMS/CSI providers and have stricter RBAC
  • Use volumes or env vars to mount/inject values
Evaluation Rubric
Differentiates ConfigMap vs Secret correctly40% weight
Mentions security/encoding and RBAC30% weight
Explains common mounting/injection patterns30% weight
Hints
  • 💡Remember base64 ≠ encryption; use KMS for encryption.
Potential Follow-up Questions
  • How to rotate a Secret safely?
  • What about sealed-secrets?
Advertisement
Back to Phone ScreenView All Categories