azure_compliance

Azure Compliance

Restrict the capabilities to reduce the attack surface of containers in a Kubernetes cluster. This recommendation is part of CIS 5.2.8 and CIS 5.2.9 which are intended to improve the security of your Kubernetes environments. This policy is generally available for Kubernetes Service (AKS), and preview for Azure Arc enabled Kubernetes. For more information, see https://aka.ms/kubepolicydoc.

kubernetes_cluster_container_use_allowed_capabilities

nist_sp_800_53_rev_5_cm_6

Configuration Settings (CM-6)

Kubernetes cluster containers should only use allowed capabilities

azure

azuread

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, PCI DSS across all your Azure subscriptions using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-azure-compliance

Control: Kubernetes cluster containers should only use allowed capabilities

Description

Usage

SQL

Tags