Back

Configure the "ClusterRoles" to organizational standards.


CONTROL ID
14637
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure "Kubernetes" to organizational standards., CC ID: 14528

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Minimize wildcard use in Roles and ClusterRoles Description: Kubernetes Roles and ClusterRoles provide access to resources based on sets of objects and actions that can be taken on those objects. It is possible to set either of these to be the wildcard "*" which matches all items. Use of wildcards i… (5.1.3, The Center for Internet Security Kubernetes Level 1 Worker Node Benchmark, v 1.6.0)
  • Minimize wildcard use in Roles and ClusterRoles Description: Kubernetes Roles and ClusterRoles provide access to resources based on sets of objects and actions that can be taken on those objects. It is possible to set either of these to be the wildcard "*" which matches all items. Use of wildcards i… (5.1.3, The Center for Internet Security Kubernetes Level 2 Worker Node Benchmark, v 1.6.0)