Role-based access control should be enabled on clusters
Severity | Exploitability | Providers | Categories |
---|---|---|---|
HIGH | LOW | Azure | PERMISSION |
Description
Role-based access control (RBAC) allows to fine-tune permissions granted to an user or a group of users. This ensures users can only access the resources they need in Azure Kubernetes Service (AKS) clusters.
Impact
Potential data exposure | Visible in logs | User interaction required | Privileges required |
---|---|---|---|
True | False | True | True |
Unauthorized access to the clusters and data leak if an account is compromised.
Remediation guidelines
Enable RBAC, create roles with restricted permissions, and assign them to users.