Ensure GKE node pools do not use default service accounts

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください

Description

The service account running the nodes in a cluster should have the principle of least privilege applied. Without a minimally privileged service account, the impact during a node comprise could be much worse.

Remediation

Follow the documentation from Google Cloud’s Harden your cluster’s security article to configure a non-default service account for your Cluster’s nodes.