-
Epic
-
Resolution: Unresolved
-
Medium
-
None
-
Kubernetes secure configuration recommendation
-
3
The Integration team must implement all Level 1 configurations specified in the CIS Kubernetes Benchmark v1.4.1 in the Kubernetes environment.
- Section 1 Master Node Security Configuration
- Recommendations 1.1.1 – 1.1.39 in Section 1.1 API Server.
- Recommendations 1.2.1 and 1.2.2 in Section 1.2 Scheduler.
- Recommendations 1.3.1 – 1.3.7 in Section 1.3 Controller Manager.
- Recommendations 1.4.1 – 1.4.21 in Section 1.4 Configuration Files.
- Recommendations 1.5.1 – 1.5.6 in Section 1.5 etcd.
- Recommendations 1.6.2 and 1.6.3 in Section 1.6 General Security Primitives.
- Recommendations 1.7.1 – 1.7.5 in Section 1.7 PodSecurity Policies.
- 2 Worker Node Security Configuration
- Recommendations 2.1.1 – 2.1.10 and 2.1.12 – 2.1.14 in Section 2.1 Kublet.
- Recommendations 2.2.1 – 2.2.10 in Section 2.2.10 in Section 2.2 Configuration Files.
CIS Kubernetes Benchmark v1.4.1 attached for implementation and testing instructions.
.