1.1.20 Ensure that the OpenShift PKI certificate file permissions are set to 600 or more restrictive

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


Ensure that OpenShift PKI certificate files have permissions of 644 or more restrictive.


OpenShift makes use of a number of certificate files as part of the operation of its components. The permissions on these files should be set to 644 or more restrictive to protect their integrity.



NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.


No remediation required; file permissions are managed by the operator.

Default Value:

By default, the certificates used by OpenShift are set to have permissions of 600.

See Also