Skip to main content

ACK Cluster Secret Encryption Enabled

ID: rule:aliyun:ack-cluster-encryption-enabled
Severity: medium

Description

ACK Pro clusters should have Secret encryption at rest enabled using KMS.

Reason for Violation

The ACK Pro cluster does not have Secret encryption at rest enabled.

Recommendation

Enable Secret encryption by specifying EncryptionProviderKey.

Resource Types

  • ALIYUN::CS::ManagedKubernetesCluster