简体繁体中英

GKE Cluster Audit

原文 2021-12-09 06:16:27 1 1 security/ kubernetes/ google-kubernetes-engine/ audit

What are the points to be reviewed while auditing a GKE cluster? We have a production cluster and I would like to what all points need to be reviewed while auditing my GKE cluster. What needs to be configured/removed for better security and HA.

1 answers

This is a very broad topic.

Short answer(Main points):

Apply Least privilege principle for IAM entities and RBAC entities
Enable binary authorizarion
Limit privileges on Containers
Enable image scanner
Use the Secret Manager
Create private clusters when possible
Spread your work nodes between AZs

But I strongly recommend you verify Google official docs:

https://cloud.google.com/kube.netes-engine/docs/concepts/security-overview#node_upgrades

See ya

Configure Audit in GKE

GKE cluster migration

GKE: Impossible to delete a cluster

GKE automatically restarted cluster

Change GKE cluster name

GKE Cluster Node not booting

GKE cluster - kernel

Running a Keycloak Cluster in GKE

Change the CIDR subnet of GKE cluster

Cluster Rolebinding not working for GKE Cluster + OIDC settings

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Configure Audit in GKE GKE cluster migration GKE: Impossible to delete a cluster GKE automatically restarted cluster Change GKE cluster name GKE Cluster Node not booting GKE cluster - kernel Running a Keycloak Cluster in GKE Change the CIDR subnet of GKE cluster Cluster Rolebinding not working for GKE Cluster + OIDC settings

Related Tags

GKE Cluster Audit

Question

1 answers

solution1 0 2022-04-30 14:14:16

solution1
0 2022-04-30 14:14:16