Skip to content
Snippets Groups Projects
Unverified Commit e1f5bb1a authored by Liz Rice's avatar Liz Rice Committed by GitHub
Browse files

Merge pull request #173 from aquasecurity/fix-1.1.37 

Fix check 1.1.37.
parents d004acdb f42243e9
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 3 additions and 3 deletions
cfg/1.11/master.yaml
+ 3
3
View file @ e1f5bb1a
...@@ -607,15 +607,15 @@ groups: ...@@ -607,15 +607,15 @@ groups:
text: "Ensure that the AdvancedAuditing argument is not set to false (Scored)" text: "Ensure that the AdvancedAuditing argument is not set to false (Scored)"
audit: "ps -ef | grep $apiserverbin | grep -v grep" audit: "ps -ef | grep $apiserverbin | grep -v grep"
tests: tests:
bin_op: and bin_op: or
test_items: test_items:
- flag: "--feature-gates" - flag: "--feature-gates"
compare: compare:
op: nothave op: nothave
value: "AdvancedAuditing=false" value: "AdvancedAuditing=false"
set: true set: true
- flag: "--audit-policy-file" - flag: "--feature-gates"
set: true set: false
remediation: | remediation: |
Follow the Kubernetes documentation and set the desired audit policy in the Follow the Kubernetes documentation and set the desired audit policy in the
/etc/kubernetes/audit-policy.yaml file. Then, edit the API server pod specification file $apiserverconf /etc/kubernetes/audit-policy.yaml file. Then, edit the API server pod specification file $apiserverconf
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment