Best practice rules for Alibaba Cloud ACK
- Cluster Check
Ensure that Cluster Check is triggered periodically for your ACK clusters.
- Disable Basic Authentication for ACK Clusters
Ensure that basic authentication is disabled for ACK clusters.
- Disable Kubernetes Dashboard for ACK Clusters
Ensure that Kubernetes Dashboard is disabled for ACK clusters.
- Disable Public Access to Kubernetes API Server
Ensure that your Kubernetes API server is not publicly accessible.
- ENI Multiple IP Mode
Ensure that ACK clusters are configured to use the ENI multiple IP mode.
- Enable Cloud Monitor for ACK Clusters
Ensure that Cloud Monitor service is enabled for your ACK clusters.
- Enable Cluster Auditing with Simple Log Service
Ensure that cluster auditing with Simple Log Service is enabled for your ACK clusters.
- Enable RBAC Authorization for ACK Clusters
Ensure that Role-Based Access Control (RBAC) authorization is enabled for your ACK clusters.
- Enable Support for Network Policies
Ensure that ACK clusters are using network policies.