Automated Rules (that were deemed manual) For some benchmark rules, it is not possible to automate the rule checks in an AWS environment. Lacework automates compliance rules where possible. If you have not set up the Lacework CLI before, see the Lacework CLI guide to get started. You can enable or disable each one using the status toggle. On the Policies page, use the framework:cis-eks-1-1-0 tag to filter for CIS Amazon EKS 1.1.0 policies only. Enable or Disable Policies through the Lacework Console You can enable or disable them using one of the following methods outlined in this section. Amazon Elastic Kubernetes Service (EKS) Compliance IntegrationsĬIS Amazon EKS 1.1.0 Benchmark Policies Īll policies in the CIS Amazon EKS 1.1.0 benchmark are enabled by default.Completing this will prepare your environment for the CIS Amazon EKS 1.1.0 benchmark:
#CIS BENCHMARK FOR AWS EKS HOW TO#
This topic describes how to integrate your Amazon Elastic Kubernetes Service (EKS) with the Lacework Compliance platform. The Kubernetes Compliance Dashboard provides details for Kubernetes assessments, including the CIS Amazon EKS CIS 1.1.0 report.All CIS 1.1.0 benchmark rules are enabled or disabled through the Policies page (see Enable the CIS Amazon EKS 1.1.0 Benchmark).You can use the CIS Amazon EKS 1.1.0 benchmark in the following ways: CIS Amazon Elastic Kubernetes Service (EKS) 1.1.0 Benchmark Report Visibility and Usage in the Lacework Console
0 kommentar(er)
