IAM misconfigurations

AKS RBAC disabled

Platform(s)
Compliance Frameworks
  • Azure CIS
  • ,
  • CCPA
  • ,
  • cis_8
  • ,
  • CPRA
  • ,
  • Data Security Posture Management (DSPM) Best Practices
  • ,
  • iso_27001_2022
  • ,
  • iso_27002_2022
  • ,
  • Mitre ATT&CK
  • ,
  • NIST 800-171
  • ,
  • NIST 800-190
  • ,
  • NIST 800-53
  • ,
  • PDPA
  • ,
  • UK Cyber Essentials

Description

RBAC is not enabled in {AzureAksCluster}. By enabling and configuring RBAC in your Kubernetes cluster you can grant users, groups, and service accounts access to only the resources they need within the Kubernetes cluster.