Vendor services misconfigurations

AKS cluster is not using Azure Active Directory authorization

Platform(s)
Compliance Frameworks
  • AKS CIS
    • ,
  • CCPA
    • ,
  • CPRA
    • ,
  • iso_27001_2022
    • ,
  • iso_27002_2022
    • ,
  • Microsoft Cloud Security Benchmark
    • ,
  • NIST 800-171
    • ,
  • NIST 800-53
    • ,
  • PDPA
    • ,
  • UK Cyber Essentials

Description

The ability to manage RBAC (Role-Based Access Control) for Kubernetes resources from Azure gives you the choice to manage RBAC for the cluster resources either using Azure or native Kubernetes mechanisms. When enabled, Azure AD (Active Directory) principals will be validated exclusively by Azure RBAC while regular Kubernetes users and service accounts are exclusively validated by Kubernetes RBAC. It was detected that {AzureAksCluster} cluster does not have Azure AD authorization enabled.
Need help?

Get a free Security Risk Assessment. Start today

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo