Ensure that the Kube Descheduler operator is deployed

An XCCDF Rule

Details
Profiles
Prose

Description

If there is an increased risk of external influences and a very high need for protection, pods should be stopped and restarted regularly. No pod should run for more than 24 hours. The availability of the applications in the pod should be ensured.

warning alert: Warning

This rule's check operates on the cluster configuration dump. Therefore, you need to use a tool that can query the OCP API, retrieve the /apis/operators.coreos.com/v1alpha1/subscriptions API endpoint to the local /apis/operators.coreos.com/v1alpha1/subscriptions file.

Rationale

If there is an increased risk of external influences and a very high need for protection, pods should be stopped and restarted regularly.

ID: xccdf_org.ssgproject.content_rule_kube_descheduler_operator_exists
Severity: Medium
References: APP.4.4.A21
Updated: 5 days ago