Guide to the Secure Configuration of Amazon Elastic Kubernetes Service
Rules, Groups, and Values defined within the XCCDF Benchmark
-
System and Software Integrity
System and software integrity can be gained by installing antivirus, increasing system encryption strength with FIPS, verifying installed software,...Group -
System Cryptographic Policies
OpenShift has the capability to centrally configure cryptographic polices.Group -
OpenShift Kube API Server
This section contains recommendations for kube-apiserver configuration.Group -
API Server Request Timeout
Enter API Server Request TimeoutValue -
API Server audit log max size
API Server audit log max sizeValue -
Bind Address of secure API endpoint
Bind Address of secure API endpointValue -
OpenShift Kube APIServer client CA
OpenShift Kube APIServer client CAValue -
OpenShift APIServer etcd encryption filter
OpenShift APIServer etcd encryption config check jq filterValue -
OpenShift APIServer etcd encryption path
OpenShift APIServer etcd encryption config check api pathValue -
OpenShift APIServer etcd encryption type
OpenShift APIServer etcd encryption provider type to use for remediation. This variable is only applicable to remediations, and does not affect che...Value -
OpenShift Kube APIServer etcd CA
OpenShift Kube APIServer etcd CAValue -
OpenShift Kube APIServer kubelet certificate authority
OpenShift Kube APIServer kubelet certificate authorityValue -
OpenShift Kube APIServer kubelet client cert
OpenShift Kube APIServer kubelet client certValue -
OpenShift Kube APIServer kubelet client key
OpenShift Kube APIServer kubelet client keyValue -
OpenShift Kube APIServer TLS cert
OpenShift Kube APIServer TLS certValue -
OpenShift Kube APIServer TLS private key
OpenShift Kube APIServer TLS private keyValue -
OpenShift API Server config name
OpenShift API Server config nameValue -
OpenShift APIServer etcd encryption filter
OpenShift APIServer etcd encryption config check jq filterValue -
OpenShift APIServer namespace
OpenShift APIServer namespaceValue -
OpenShift Kube API Server config name
OpenShift Kube API Server config nameValue
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.