Control: 7.4 Ensure Cluster Check triggered at least once per week for Kubernetes Clusters

Description

Kubernetes Engine's cluster check feature helps you verify the system nodes and components healthy status. When you trigger the checking, the process would check on the health state of each node in your cluster and also the cluster configuration as kubelet\docker daemon\kernel and network iptables configuration, if there are fails consecutive health checks, the diagnose would report to admin for further repair.

Remediation

From Console

Logon to ACK console.
Select the target cluster and open the More pop-menu for advance options on cluster.
Select Global Check and click the Start button to trigger the checking.

Usage

Run the control in your terminal:

powerpipe control run alicloud_compliance.control.cis_v100_7_4

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run alicloud_compliance.control.cis_v100_7_4 --share

SQL

This control uses a named query:

manual_control

Control: 7.4 Ensure Cluster Check triggered at least once per week for Kubernetes Clusters

Description

Remediation

From Console

Usage

SQL

Tags