AzPolicyAdvertizer

last sync: 2025-Jun-13 17:23:19 UTC

Kubernetes clusters should ensure that the cluster-admin role is only used where required

Azure BuiltIn Policy definition

Source Azure Portal
Display name Kubernetes clusters should ensure that the cluster-admin role is only used where required
Id a3dc4946-dba6-43e6-950d-f96532848c9f
Version 1.1.0
Details on versioning
Versioning Versions supported for Versioning: 2
1.1.0
1.0.0
Built-in Versioning [Preview]
Category Kubernetes
Microsoft Learn
Description The role 'cluster-admin' provides wide-ranging powers over the environment and should be used only where and when needed.
Cloud environments AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown
Available in AzUSGov The Policy is available in AzureUSGovernment cloud. Version: '1.0.0'
Repository: Azure-Policy a3dc4946-dba6-43e6-950d-f96532848c9f
Mode Microsoft.Kubernetes.Data
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases none
Rule resource types IF (1)
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
[Preview]: Kubernetes cluster should follow the security control recommendations of Center for Internet Security (CIS) Kubernetes benchmark 4fd005fd-51be-478f-a8fb-149d48b20d48 Kubernetes Preview BuiltIn true
History
Date/Time (UTC ymd) (i) Change type Change detail
2024-08-09 18:17:47 change Minor (1.0.0 > 1.1.0)
2023-11-06 19:40:47 add a3dc4946-dba6-43e6-950d-f96532848c9f
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC