Skip to content

Restrict the usage of unauthenticated APIs in the cluster


ID: MS-M9021
MITRE mitigation: -

Some unmanaged clusters are misconfigured such as anonymous access is accepted by the Kubernetes API server. Make sure that the Kubernetes API is configured properly, and authentication and authorization mechanisms are set.

Techniques Addressed by Mitigation

ID Name Use
MS-TA9024 Connect from proxy server Restrict unauthenticated API to the Kubernetes API server.