Aqua CSPM

EKS Security Groups

Quick Info

Plugin TitleEKS Security Groups
CloudAWS
CategoryEKS
DescriptionEnsures the EKS control plane only allows inbound traffic on port 443.
More InfoThe EKS control plane only requires port 443 access. Security groups for the control plane should not add additional port access.
AWS Linkhttps://docs.aws.amazon.com/eks/latest/userguide/sec-group-reqs.html
Recommended ActionConfigure security groups for the EKS control plane to allow access only on port 443.

Detailed Remediation Steps