Aqua CSPM

Cluster Least Privilege

Quick Info

Plugin TitleCluster Least Privilege
CloudGOOGLE
CategoryKubernetes
DescriptionEnsures Kubernetes clusters are created with limited service account access scopes
More InfoKubernetes service accounts should be limited in scope to the services necessary to operate the clusters.
GOOGLE Linkhttps://cloud.google.com/compute/docs/access/service-accounts
Recommended ActionEnsure that all Kubernetes clusters are created with limited access scope.

Detailed Remediation Steps