Workload misconfigurations

Ensure that TLS CA certificate file ownership is set to root:root (Automated)

Risk Level

Informational (4)

Platform(s)
  • N/A

Compliance Frameworks

Description

You should verify that the TLS CA certificate file (the file that is passed along with the -- tlscacert parameter) is individually owned and group owned by root.
  • Recommended Mitigation

    You should execute the following command: 'chown root:root '. This sets the individual ownership and group ownership for the TLS CA certificate file to root.