Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Amazon Elastic Kubernetes Service
Kubernetes Settings
Kubernetes Kubelet Settings
kubelet - Authorization Options
kubelet - Authorization Options
An XCCDF Value
Details
Profiles
Prose
kubelet - Authorization Options
ABAC - Attribute-Based Access Control (ABAC) mode allows you to configure policies using local files.
RBAC - Role-based access control (RBAC) mode allows you to create and store policies using the Kubernetes API.
Webhook - WebHook is an HTTP callback mode that allows you to manage authorization using a remote REST endpoint.
Node Node - authorization is a special-purpose authorization mode that specifically authorizes API requests made by kubelets.
AlwaysDeny - This flag blocks all requests. Use this flag only for testing.