CIS Kubernetes Benchmark
Profile Applicability: Level 1 Description: The EventRateLimit admission control plugin in Kubernetes limits the rate at which events are created to...
Fri, 9 May, 2025 at 12:27 AM
Profile Applicability: Level 1 Description: The --authorization-mode argument controls the authorization process for API requests in Kubernetes. Inc...
Fri, 9 May, 2025 at 12:32 AM
Profile Applicability: Level 1 Description: The --authorization-mode argument controls how authorization is handled by the Kubelet. By including Node...
Fri, 9 May, 2025 at 12:36 AM
Profile Applicability: Level 1 Description: The --authorization-mode argument in the Kubelet configuration determines how authorization is performe...
Fri, 9 May, 2025 at 12:40 AM
Profile Applicability: Level 1 Description: The --kubelet-certificate-authority argument defines the certificate authority file to validate the Kube...
Fri, 9 May, 2025 at 12:45 AM
Profile Applicability: Level 1 Description: Ensure that the --kubelet-client-certificate and --kubelet-client-key arguments are correctly configured...
Fri, 9 May, 2025 at 12:52 AM
Profile Applicability: Level 1 Description: Ensure that the DenyServiceExternalIPs admission control is enabled in the Kubernetes API server configu...
Fri, 9 May, 2025 at 12:57 AM
Profile Applicability: Level 1 Description: Ensure that the --token-auth-file parameter is not set in the Kubernetes API server configuration. This ...
Fri, 9 May, 2025 at 1:05 AM
Profile Applicability: Level 1 Description: Ensure that the --anonymous-auth argument is set to false in the Kubernetes API server configuration. Th...
Fri, 9 May, 2025 at 1:11 AM
Profile Applicability: Level 1 Description: Ensure that the Kubernetes PKI key files (such as apiserver.key, etcd.key, and other private key files) ...
Fri, 9 May, 2025 at 1:20 AM