Back

Configure the "kubelet-https" argument to organizational standards.


CONTROL ID
14561
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure "Kubernetes" to organizational standards., CC ID: 14528

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Ensure that the --kubelet-https argument is set to true Description: Use https for kubelet connections. Rationale: Connections from apiserver to kubelets could potentially carry sensitive data such as secrets and keys. It is thus important to use in-transit encryption for any communication between t… (1.2.4, The Center for Internet Security Kubernetes Level 1 Master Node Benchmark, v 1.6.0)
  • Ensure that the --kubelet-https argument is set to true Description: Use https for kubelet connections. Rationale: Connections from apiserver to kubelets could potentially carry sensitive data such as secrets and keys. It is thus important to use in-transit encryption for any communication between t… (1.2.4, The Center for Internet Security Kubernetes Level 2 Master Node Benchmark, v 1.6.0)