Remove cloud provider and move to ARM64

docs/06-data-encryption-keys.md

@@ -8,36 +8,23 @@ In this lab you will generate an encryption key and an [encryption config](https
 
 Generate an encryption key:
 
-```
-ENCRYPTION_KEY=$(head -c 32 /dev/urandom | base64)
+```bash
+export ENCRYPTION_KEY=$(head -c 32 /dev/urandom | base64)
 ```
 
 ## The Encryption Config File
 
 Create the `encryption-config.yaml` encryption config file:
 
-```
-cat > encryption-config.yaml <<EOF
-kind: EncryptionConfig
-apiVersion: v1
-resources:
-  - resources:
-      - secrets
-    providers:
-      - aescbc:
-          keys:
-            - name: key1
-              secret: ${ENCRYPTION_KEY}
-      - identity: {}
-EOF
+```bash
+envsubst < configs/encryption-config.yaml \
+  > encryption-config.yaml
 ```
 
 Copy the `encryption-config.yaml` encryption config file to each controller instance:
 
-```
-for instance in controller-0 controller-1 controller-2; do
-  gcloud compute scp encryption-config.yaml ${instance}:~/
-done
+```bash
+scp encryption-config.yaml root@server:~/
 ```
 
 Next: [Bootstrapping the etcd Cluster](07-bootstrapping-etcd.md)