Control plane authorized networks should be enabled

Docs > Datadog Security > OOTB Rules > Control plane authorized networks should be enabled

google_kubernetes_engine_cluster

Description

Master authorized networks should be enabled to restrict access to the cluster’s control plane by using an allowlist of IPs.

Remediation

Using the command line

Enable master authorized networks with the following command:

gcloud container clusters update <cluster_name> --zone <compute_zone> --enable-master-authorized-networks