Ensure that your Amazon Elastic Kubernetes Service (EKS) clusters are using the latest stable version of Kubernetes container-orchestration system, in order to follow AWS best practices, receive the latest Kubernetes features, design updates and bug fixes, and benefit from better security and performance. The community releases new Kubernetes minor versions, such as 1.14, approximately every three months, and each minor version is supported for approximately one year after it is first released.
This rule can help you with the following compliance standards:
- PCI
- APRA
- MAS
For further details on compliance standards supported by Conformity, see here.
This rule resolution is part of the Conformity Security & Compliance tool for AWS.
efficiency
The Kubernetes container-orchestration system receives version updates regularly in order to introduce new software features, bug fixes, security patches and performance improvements. As new Kubernetes versions become available in Amazon EKS, unless your containerized applications require a specific version of Kubernetes, Cloud Conformity strongly recommends that you choose the latest available version of Kubernetes supported by Amazon Web Services for your EKS clusters in order to benefit from new features and enhancements.
Audit
To determine if your AWS EKS clusters are using the latest version of Kubernetes, perform the following actions:
Remediation / Resolution
As new Kubernetes versions become available for the EKS service, you can proactively update your EKS clusters to use the latest available version. To update the Kubernetes version for your existing Amazon EKS clusters, perform the following actions:
References
- AWS Documentation
- Amazon EKS FAQs
- Amazon EKS Kubernetes Versions
- Updating an Amazon EKS Cluster Kubernetes Version
- AWS Command Line Interface (CLI) Documentation
- eks
- list-clusters
- describe-cluster
- update-cluster-version
- describe-update
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Kubernetes Cluster Version
Risk Level: Low