diff --git a/cfg/cis-1.20/master.yaml b/cfg/cis-1.20/master.yaml
index 032f858f8464c93a5fc771e343da0517d6d05602..fcbfcd4700534f142585495cd972483501ff4608 100644
--- a/cfg/cis-1.20/master.yaml
+++ b/cfg/cis-1.20/master.yaml
@@ -278,7 +278,7 @@ groups:
- id: 1.1.20
text: "Ensure that the Kubernetes PKI certificate file permissions are set to 644 or more restrictive (Manual)"
- audit: "find /etc/kubernetes/pki -name '*.crt' | xargs stat -c permissions=%a"
+ audit: "find /etc/kubernetes/pki/ -name '*.crt' | xargs stat -c permissions=%a"
use_multiple_values: true
tests:
test_items:
@@ -294,7 +294,7 @@ groups:
- id: 1.1.21
text: "Ensure that the Kubernetes PKI key file permissions are set to 600 (Manual)"
- audit: "find /etc/kubernetes/pki -name '*.key' | xargs stat -c permissions=%a"
+ audit: "find /etc/kubernetes/pki/ -name '*.key' | xargs stat -c permissions=%a"
use_multiple_values: true
tests:
test_items:
diff --git a/cfg/cis-1.6/master.yaml b/cfg/cis-1.6/master.yaml
index bdd3f990f6246612ccde754707638caf2310d24d..59d5e0b0d118c69440ee838cbc1c8fb599bbc43c 100644
--- a/cfg/cis-1.6/master.yaml
+++ b/cfg/cis-1.6/master.yaml
@@ -278,7 +278,7 @@ groups:
- id: 1.1.20
text: "Ensure that the Kubernetes PKI certificate file permissions are set to 644 or more restrictive (Manual)"
- audit: "find /etc/kubernetes/pki -name '*.crt' | xargs stat -c permissions=%a"
+ audit: "find /etc/kubernetes/pki/ -name '*.crt' | xargs stat -c permissions=%a"
use_multiple_values: true
tests:
test_items:
@@ -294,7 +294,7 @@ groups:
- id: 1.1.21
text: "Ensure that the Kubernetes PKI key file permissions are set to 600 (Manual)"
- audit: "find /etc/kubernetes/pki -name '*.key' | xargs stat -c permissions=%a"
+ audit: "find /etc/kubernetes/pki/ -name '*.key' | xargs stat -c permissions=%a"
use_multiple_values: true
tests:
test_items: