Steampipe mods are now Powerpipe →
Powerpipe Hub 
Hub
Mods
turbot/aws_compliance
Overview
26Dashboards
1161Controls
568Queries
2Variables
GitHub
Loading controls...

Control: EKS clusters should be configured to have kubernetes secrets encrypted using KMS

Description

Ensure that AWS Elastic Kubernetes Service clusters are configured to have Kubernetes secrets encrypted using AWS Key Management Service (KMS) keys.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.eks_cluster_secrets_encrypted

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.eks_cluster_secrets_encrypted --share

SQL

This control uses a named query:

eks_cluster_secrets_encrypted

Tags

category = Compliance
gxp_eu_annex_11 = true
hipaa_final_omnibus_security_rule_2013 = true
hipaa_security_rule_2003 = true
nist_csf = true
pci_dss_v321 = true
plugin = aws
service = AWS/EKS