Kubernetes PKI certificate files should have permissions of 600 or more restrictive

Docs > Datadog Security > OOTB Rules > Kubernetes PKI certificate files should have permissions of 600 or more restrictive

Set up the kubernetes integration.

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

Ensure that Kubernetes PKI certificate files have permissions of 600 or more restrictive. Kubernetes makes use of a number of certificate files as part of the operation of its components. The permissions on these files should be set to 600 or more restrictive to protect their integrity.

Remediation

Run the following command to adjust the file permissions:
```
chmod -R 600 /etc/kubernetes/pki/*.crt
```