Basic Authentication Disabled

Quick Info

Plugin TitleBasic Authentication Disabled
DescriptionEnsure basic authentication is set to disabled on Kubernetes clusters.
More InfoBasic authentication uses static passwords to authenticate, which is not the recommended method to authenticate into the Kubernetes API server.
Recommended ActionDisable basic authentication on all clusters

Detailed Remediation Steps

  1. Log into the Google Cloud Platform Console.
  2. Scroll down the left navigation panel and choose the “Kubernetes Engine” option under the “Compute” and select the “Clusters.”
  3. On the “Kubernetes clusters” page , click on the “Name” as a link option to select the cluster.
  4. On the “Clusters” page, click on the “Edit” button at the top.
  5. Scroll down the “Clusters - Edit” page and check whether “Basic authentication” is enabled or disabled. If it’s set to enabled then it’s not as per the best recommended method to authenticate.
  6. Repeat steps number 2 - 5 to verify other “Clusters” in the account.
  7. Navigate to the “Kubernetes Engine” option under the “Compute”, choose the “Clusters” and click on the “Edit” button at the top.
  8. On the “Clusters - Edit” page, scroll down and choose the “Disabled” option from the dropdown menu next to “Basic authentication."
  9. Click on the “Save” button to make the changes.
  10. Repeat steps number 7 - 9 to disable basic authentication on all clusters.