Authentication using Client Certificates should be disabled

이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Description

Client certificates should be disabled, which require certificate rotation, for authentication. Kubernetes does not have a way to revoke certificates at present and you should use another authentication method like OAuth.

Note: Basic authentication(static password) has been removed as of v1.19 in Kubernetes.

Remediation

  1. Go to the Kubernetes Engine
  2. Click CREATE CLUSTER
  3. Configure the cluster as required and the click on Availability, networking, security, and additional features section
  4. Ensure that the Issue a client certificate checkbox is not ticked
  5. Click CREATE.

References