Workload misconfigurations

Kubernetes node’s kubelet anonymous-auth flag is enabled


The kubelet reads various parameters, including security settings, from a config file. When the anonymous-auth flag is enabled, requests that are not rejected by other configured authentication methods are treated as anonymous requests. These requests are then served by the Kubelet server. Orca has detected that the Anonymous-auth flag is enabled on {K8sNode.Vm}.