The Kubernetes PKI directories should be owned by root

Docs > Datadog Security > OOTB Rules > The Kubernetes PKI directories should be owned by root

Set up the kubernetes integration.

Description

Ensure that the Kubernetes PKI directories and subsequent certificate files are owned by root:root. Kubernetes makes use of a number of certificates as part of its operation. You should set the ownership of the directory containing the PKI information and all files in that directory to maintain their integrity.

Remediation

Run the following command to adjust the file ownership:
```
chown -R root:root /etc/kubernetes/pki/
```