Skip to content
ATO Pathways
  Log In

Guide to the Secure Configuration of Amazon Elastic Kubernetes Service

Rules, Groups, and Values defined within the XCCDF Benchmark

  • System and Software Integrity

    System and software integrity can be gained by installing antivirus, increasing system encryption strength with FIPS, verifying installed software,...
    Group
    Show

  • System Cryptographic Policies

    OpenShift has the capability to centrally configure cryptographic polices.
    Group
    Show

  • OpenShift Kube API Server

    This section contains recommendations for kube-apiserver configuration.
    Group
    Show

  • API Server Request Timeout

    Enter API Server Request Timeout
    Value
    Show

  • API Server audit log max size

    API Server audit log max size
    Value
    Show

  • Bind Address of secure API endpoint

    Bind Address of secure API endpoint
    Value
    Show

  • OpenShift Kube APIServer client CA

    OpenShift Kube APIServer client CA
    Value
    Show

  • OpenShift APIServer etcd encryption filter

    OpenShift APIServer etcd encryption config check jq filter
    Value
    Show

  • OpenShift APIServer etcd encryption path

    OpenShift APIServer etcd encryption config check api path
    Value
    Show

  • OpenShift APIServer etcd encryption type

    OpenShift APIServer etcd encryption provider type to use for remediation. This variable is only applicable to remediations, and does not affect che...
    Value
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules