Workload misconfigurations

Kubernetes node’s kubelet –tls-cert-file and –tls-private-key-file are not set

Platform(s)
  • Non-platform specific

Compliance Frameworks

CCPA, CPRA, iso_27001_2022, iso_27002_2022, K8s CIS, K8s OWASP Top 10, New Zealand Information Security Manual, NIST 800-171, NIST 800-190, NIST 800-53, PDPA, STIG K8s, UK Cyber Essentials

Description

Kubelet communication contains sensitive parameters that should remain encrypted in transit. Orca has detected that the --tls-cert-file or --tls-private-key-file arguments are not set to an appropriate files.