turbot/aws_compliance

Control: EKS clusters endpoint public access should be restricted

Description

EKS clusters endpoint with private access allows communication between your nodes and the API server stays within. This control is non-compliant if clusters endpoint public access is enabled as cluster API server is accessible from the internet.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.eks_cluster_endpoint_public_access_restricted

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.eks_cluster_endpoint_public_access_restricted --share

SQL

This control uses a named query:

eks_cluster_endpoint_public_access_restricted

Tags