OpenShift APIServer etcd encryption type

An XCCDF Value

Details
Profiles
Prose

Description

OpenShift APIServer etcd encryption provider type to use for remediation. This variable is only applicable to remediations, and does not affect checks. This variable is set to 'aescbc' by default, which is supported across all OpenShift versions as the etcd encryption provider type. OpenShift 4.13 and newer support 'aesgcm'. Attempting to use 'aesgcm' on older versions of OpenShift will result in a failed remediation. Please make sure the encryption provider type you set is supported on the version of OpenShift you're using.

ID: xccdf_org.ssgproject.content_value_var_apiserver_encryption_type
Updated: 8 months ago