Ensure that your Azure Kubernetes Service (AKS) clusters are using the latest available version of Kubernetes platform in order to receive new or enhanced features and the most recent security fixes. The Kubernetes version upgrade becomes fully available only after it is approved by Microsoft Azure.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
efficiency
As part of the lifecycle of your AKS clusters, you will often need to upgrade to the latest version of Kubernetes. By upgrading your Azure Kubernetes Service (AKS) clusters, you will regularly introduce new software features, security patches, performance improvements and better compatibility with different applications and/or services.
Audit
To determine if your AKS clusters are using the latest available version of Kubernetes, perform the following actions:
Remediation / Resolution
To upgrade your Azure Kubernetes Service (AKS) clusters to the latest available version of Kubernetes software, perform the following actions:
References
- Azure Official Documentation
- Azure Kubernetes Service (AKS)
- Upgrade an Azure Kubernetes Service (AKS) cluster
- Azure Command Line Interface (CLI) Documentation
- az aks list
- az aks get-upgrades
- az aks upgrade