Restrict the usage of unauthenticated APIs in the cluster
Info
ID: MS-M9021
MITRE mitigation: -
Some unmanaged clusters are misconfigured such as anonymous access is accepted by the Kubernetes API server. Make sure that the Kubernetes API is configured properly, and authentication and authorization mechanisms are set.
Techniques Addressed by Mitigation
| ID | Name | Use |
|---|---|---|
| MS-TA9024 | Connect from proxy server | Restrict unauthenticated API to the Kubernetes API server. |