diff --git a/cfg/1.11/master.yaml b/cfg/1.11/master.yaml
index 8a444649945a59eff626127889403cd06abcb0b7..8e5b76ed054df33d499add58aaff62c3f3d0a8f8 100644
--- a/cfg/1.11/master.yaml
+++ b/cfg/1.11/master.yaml
@@ -441,12 +441,15 @@ groups:
     text: "Ensure that the admission control plugin ServiceAccount is set(Scored)"
     audit: "ps -ef | grep $apiserverbin | grep -v grep"
     tests:
+      bin_op: or
       test_items:
       - flag: "--enable-admission-plugins"
         compare:
           op: has
           value: "ServiceAccount"
         set: true
+      - flag: "--enable-admission-plugins"
+        set: false
     remediation: |
       Follow the documentation and create ServiceAccount objects as per your environment.
       Then, edit the API server pod specification file $apiserverconf
diff --git a/cfg/1.13/master.yaml b/cfg/1.13/master.yaml
index 3662a062dc7f11048df5c584989564845212850b..c730319eab3a9055b43b8b681cd377ddad2f8487 100644
--- a/cfg/1.13/master.yaml
+++ b/cfg/1.13/master.yaml
@@ -445,12 +445,15 @@ groups:
     text: "Ensure that the admission control plugin ServiceAccount is set(Scored)"
     audit: "ps -ef | grep $apiserverbin | grep -v grep"
     tests:
+      bin_op: or
       test_items:
       - flag: "--enable-admission-plugins"
         compare:
           op: has
           value: "ServiceAccount"
         set: true
+      - flag: "--enable-admission-plugins"
+        set: false
     remediation: |
       Follow the documentation and create ServiceAccount objects as per your environment.
       Then, edit the API server pod specification file $apiserverconf