EKS Control Plane Access is Not Restricted

Overview

EKS Cluster plane is checked if it has restricted access. Restricted access to the Kubernetes API server should be enabled to ensure API communication stays within our VPC. Endpoint access and access cidrs are specifically checked.

Vendor

AWS

Cloud Service

EKS

References

https://docs.aws.amazon.com/eks/latest/APIReference/API_Cluster.html, https://docs.aws.amazon.com/eks/latest/userguide/cluster-endpoint.html, https://docs.aws.amazon.com/eks/latest/APIReference/API_VpcConfigResponse.html

Severity

Item Types

AWS::EKS::Cluster

Overview​

Vendor​

Cloud Service​

Related Requirements​

Related Controls​

References​

Severity​

Item Types​