Kubernetes node's kubelet --tls-cert-file and --tls-private-key-file are not set

Workload misconfigurations

Kubernetes node’s kubelet –tls-cert-file and –tls-private-key-file are not set

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

CCPA
CPRA
ISO/IEC 27001
K8s CIS
K8s OWASP Top 10
New Zealand Information Security Manual
NIST 800-171
NIST 800-190
NIST 800-53
PDPA
STIG K8s
UK Cyber Essentials

Description

Kubelet communication contains sensitive parameters that should remain encrypted in transit. Orca has detected that the --tls-cert-file or --tls-private-key-file arguments are not set to an appropriate files.

Recommended Mitigation

Consider setting {K8sNode}'s Kubelet's --tls-cert-file and --tls-private-key-file to a valid certificate file path.

Kubernetes node’s kubelet –tls-cert-file and –tls-private-key-file are not set

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS