Back

Configure the "anonymous-auth" argument to organizational standards.


CONTROL ID
14564
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure "Kubernetes" to organizational standards., CC ID: 14528

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Ensure that the --anonymous-auth argument is set to false Description: Disable anonymous requests to the API server. Rationale: When enabled, requests that are not rejected by other configured authentication methods are treated as anonymous requests. These requests are then served by the API server.… (1.2.1, The Center for Internet Security Kubernetes Level 1 Master Node Benchmark, v 1.6.0)
  • Ensure that the --anonymous-auth argument is set to false Description: Disable anonymous requests to the Kubelet server. Rationale: When enabled, requests that are not rejected by other configured authentication methods are treated as anonymous requests. These requests are then served by the Kubelet… (4.2.1, The Center for Internet Security Kubernetes Level 1 Worker Node Benchmark, v 1.6.0)
  • Ensure that the --anonymous-auth argument is set to false Description: Disable anonymous requests to the Kubelet server. Rationale: When enabled, requests that are not rejected by other configured authentication methods are treated as anonymous requests. These requests are then served by the Kubelet… (4.2.2, The Center for Internet Security Kubernetes Level 1 Worker Node Benchmark, v 1.6.0)
  • Ensure that the --anonymous-auth argument is set to false Description: Disable anonymous requests to the API server. Rationale: When enabled, requests that are not rejected by other configured authentication methods are treated as anonymous requests. These requests are then served by the API server.… (1.2.1, The Center for Internet Security Kubernetes Level 2 Master Node Benchmark, v 1.6.0)
  • Ensure that the --anonymous-auth argument is set to false Description: Disable anonymous requests to the Kubelet server. Rationale: When enabled, requests that are not rejected by other configured authentication methods are treated as anonymous requests. These requests are then served by the Kubelet… (4.2.1, The Center for Internet Security Kubernetes Level 2 Worker Node Benchmark, v 1.6.0)