Alibaba > ACK >

ACK Private Cluster Enabled

MEDIUM

Source

CloudSploit

ID

ack-private-cluster-enabled

management console

ACK Private Cluster Enabled

Ensure that Kubernetes clusters are created with private cluster enabled.

Private cluster restricts access to the Kubernetes API server from the public internet, making it more secure. In a private cluster, the API Server Public Network Endpoint is not exposed to the internet. This reduces the risk of unauthorised access and helps protect sensitive data and workloads. It is recommended to have Private Cluster enabled for better security.

Recommended Actions

Recreate Kubernetes clusters with public access disabled.

Links

https://www.alibabacloud.com/help/en/ack/ack-managed-and-ack-dedicated/user-guide/control-public-access-to-the-api-server-of-a-cluster

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.

Copyright © 2024 Aqua Security Software Ltd. Privacy Policy | Terms of Use