Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

1.2.18 Ensure that the --audit-log-path argument is set #31

Open
scfast opened this issue Apr 30, 2023 · 0 comments
Open

1.2.18 Ensure that the --audit-log-path argument is set #31

scfast opened this issue Apr 30, 2023 · 0 comments
Labels
Level 1 Level 1 hardness

Comments

@scfast
Copy link

scfast commented Apr 30, 2023

Profile Applicability:
• Level 1 - Master Node

Description:
Enable auditing on the Kubernetes API Server and set the desired audit log path.

Rationale:
Auditing the Kubernetes API Server provides a security-relevant chronological set of
records documenting the sequence of activities that have affected system by individual
users, administrators or other components of the system. Even though currently,
Kubernetes provides only basic audit capabilities, it should be enabled. You can enable
it by setting an appropriate audit log path.

Impact:
None

Audit:
Run the following command on the Control Plane node:
ps -ef | grep kube-apiserver
Verify that the --audit-log-path argument is set as appropriate.

Default Value:
By default, auditing is not enabled.

References:

  1. https://kubernetes.io/docs/admin/kube-apiserver/
  2. https://kubernetes.io/docs/concepts/cluster-administration/audit/
  3. API Audit Logging kubernetes/enhancements#22
@scfast scfast added the Level 1 Level 1 hardness label Apr 30, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Level 1 Level 1 hardness
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@scfast