3.1 Authentication and Authorization
3.1.1 Client certificate authentication should not be used for users (Manual)
Recommended Action
Alternative mechanisms provided by Kubernetes such as the use of OIDC should be
implemented in place of client certificates.