Note: to enable this control run Kubescape with host sensor (see here)
etcd encryption is used, it is important to ensure that the appropriate set of encryption providers is used. Currently, the
secretbox are likely to be appropriate options.
etcd encryption is used, appropriate providers should be configured.
Run the following command on the Control Plane node:
ps -ef | grep kube-apiserver
EncryptionConfig file set for
--encryption-provider-config argument. Verify that
secretbox is set as the encryption provider for all the desired
Follow the Kubernetes documentation and configure a
EncryptionConfig file. In this file, choose
secretbox as the encryption provider.
By default, no encryption provider is set.
Updated 12 days ago