J B P:
Hello people, working on Mock exam 3, Lab1 kube-bench. This cluster has only 1 controlnode. Supposedly i have to modify/mend the report that states for “4 Worker Node Security Configuration”. how can i modifed the yaml file to reflect this ,
[FAIL] 4.2.6 Ensure that the --protect-kernel-defaults argument is set to true (Automated)
?
Marvin Kindel:
Use this page as reference: https://kubernetes.io/docs/reference/config-api/kubelet-config.v1beta1/
Add following line to the kubelet config
protectKernelDefaults: true
Vijin Palazhi:
In this example, the controlplane also serves as a worker so assuming that was the task, you can update the kubelet on the on the controlplane node.
But if there are more nodes in the cluster, update them accordingly.
J B P:
@Vijin Palazhi thx. well there is only one node in the cluster, so thought controlplane was the worker 