1.2.18 Ensure that the --secure-port argument is not set to 0

Information

Do not disable the secure port.

The secure port is used to serve https with authentication and authorization. If you disable it, no https traffic is served and all traffic is served unencrypted.

Solution

None.

Impact:

You need to set the API Server up with the right TLS certificates.

See Also

https://workbench.cisecurity.org/benchmarks/19464

Item Details

Category: ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|AC-17(2), 800-53|IA-5, 800-53|IA-5(1), 800-53|SC-8, 800-53|SC-8(1), CSCv7|14.4

Plugin: OpenShift

Control ID: 8bc2ec4ade5ea96e1c34ff7a81675d9d3ad6ef21d698101a8625bc9be0f92d0a