Profile applicability: Level 1 - Master Node
Ensure that the
scheduler.conf file ownership is set to
root:root.The
scheduler.conf file is the kubeconfig file for the Scheduler. You should
set its file ownership to maintain the integrity of the file. The file should be owned
by
root:root. |
NoteBy default,
scheduler.conf file ownership is set to
root:root. |
Audit
Run the below command (based on the file location on your system) on the Control Plane
node.
stat -c %U:%G /etc/kubernetes/scheduler.conf
Verify that the ownership is set to
root:root.Remediation
Run the below command (based on the file location on your system) on the Control Plane
node.
chown root:root /etc/kubernetes/scheduler.conf