New GKE Rules for Enhanced Security and Control in Google Kubernetes Engine

You’re offline. This is a read only version of the page.

Views:

February 19, 2025, Conformity—New Rules

GCP

GKE-021: Use GKE Clusters with Private Endpoints Only: This rule ensures to restrict the control plane access to your Google Kubernetes Engine (GKE) clusters to private endpoints only, effectively disabling external access to the Kubernetes API.

GKE-024: Use Container-Optimized OS for GKE Clusters Nodes: This rule ensures that your Google Kubernetes Engine (GKE) cluster nodes use the Container-Optimized OS (cos_containerd), a managed, optimized, and hardened base OS provided by GKE to limit the host's attack surface.

Table of Contents

The page you're looking for can't be found or is under maintenance

Try again later or go back to the previous page