1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
|
controls:
- id: '2'
title: etcd
status: pending
rules: []
controls:
- id: '2.1'
title: Ensure that the --cert-file and --key-file arguments are set as appropriate
status: automated
rules:
- etcd_cert_file
- etcd_key_file
levels: [ level_1, ]
- id: '2.2'
title: Ensure that the --client-cert-auth argument is set to true
status: automated
rules:
- etcd_client_cert_auth
levels: [ level_1, ]
- id: '2.3'
title: Ensure that the --auto-tls argument is not set to true
status: automated
rules:
- etcd_auto_tls
levels: [ level_1, ]
- id: '2.4'
title: Ensure that the --peer-cert-file and --peer-key-file arguments are set as appropriate
status: automated
rules:
- etcd_peer_cert_file
- etcd_peer_key_file
levels: [ level_1, ]
- id: '2.5'
title: Ensure that the --peer-client-cert-auth argument is set to true
status: automated
rules:
- etcd_peer_client_cert_auth
levels: [ level_1, ]
- id: '2.6'
title: Ensure that the --peer-auto-tls argument is not set to true
status: automated
rules:
- etcd_peer_auto_tls
levels: [ level_1, ]
- id: '2.7'
title: Ensure that a unique Certificate Authority is used for etcd
status: automated
rules:
- etcd_unique_ca
levels: [ level_2, ]
|
