Aqua CSPM

Default Service Account

Quick Info

Plugin TitleDefault Service Account
CloudGOOGLE
CategoryKubernetes
DescriptionEnsures all Kubernetes cluster nodes are not using the default service account.
More InfoKubernetes cluster nodes should use customized service accounts that have minimal privileges to run. This reduces the attack surface in the case of a malicious attack on the cluster.
GOOGLE Linkhttps://cloud.google.com/container-optimized-os/
Recommended ActionEnsure that no Kubernetes cluster nodes are using the default service account

Detailed Remediation Steps