K8S API server authentication to kubelet endpoint is not set

Risk Level

Informational (4)

  • N/A

Compliance Frameworks


It was found that the authentication from the API server to the kubelet endpoints is not set. By default the server does not authenticate itself and its commands are treated anonymously.
  • Recommended Mitigation

    It is recommended configure authentication to the endpoint by setting '--kubelet-client-certificate', '--kubelet-client-key' parameters.