Back

Configure the "peer-key-file" argument to organizational standards.


CONTROL ID
14595
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure "etcd" to organizational standards., CC ID: 14535

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Ensure that the --peer-cert-file and --peer-key-file arguments are set as appropriate Description: etcd should be configured to make use of TLS encryption for peer connections. Rationale: etcd is a highly-available key value store used by Kubernetes deployments for persistent storage of all of its R… (2.4, The Center for Internet Security Kubernetes Level 1 Master Node Benchmark, v 1.6.0)
  • Ensure that the --peer-cert-file and --peer-key-file arguments are set as appropriate Description: etcd should be configured to make use of TLS encryption for peer connections. Rationale: etcd is a highly-available key value store used by Kubernetes deployments for persistent storage of all of its R… (2.4, The Center for Internet Security Kubernetes Level 2 Master Node Benchmark, v 1.6.0)