Compliance > Kubernetes > CIS KUBERNETES BENCHMARKS V1.23-1.23 >

Client certificate authentication should not be used for users (Manual)

HIGH

Source

Trivy

3.1.1

Version

1.23

3.1.1 - Client certificate authentication should not be used for users (Manual)

Kubernetes provides the option to use client certificates for user authentication. However as there is no way to revoke these certificates when a user leaves an organization or loses their credential, they are not suitable for this purpose

Control Checks

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.