| Plugin Title | Basic Authentication Disabled |
| Cloud | |
| Category | Kubernetes |
| Description | Ensure basic authentication is set to disabled on Kubernetes clusters. |
| More Info | Basic authentication uses static passwords to authenticate, which is not the recommended method to authenticate into the Kubernetes API server. |
| GOOGLE Link | https://cloud.google.com/kubernetes-engine/docs/how-to/hardening-your-cluster |
| Recommended Action | Disable basic authentication on all clusters |
- Log into the Google Cloud Platform Console.
- Scroll down the left navigation panel and choose the "Kubernetes Engine" option under the "Compute" and select the "Clusters."
- On the "Kubernetes clusters" page , click on the "Name" as a link option to select the cluster.
- On the "Clusters" page, click on the "Edit" button at the top.
- Scroll down the "Clusters - Edit" page and check whether "Basic authentication" is enabled or disabled. If it's set to enabled then it's not as per the best recommended method to authenticate.
- Repeat steps number 2 - 5 to verify other "Clusters" in the account.
- Navigate to the "Kubernetes Engine" option under the "Compute", choose the "Clusters" and click on the "Edit" button at the top.
- On the "Clusters - Edit" page, scroll down and choose the "Disabled" option from the dropdown menu next to "Basic authentication."
- Click on the "Save" button to make the changes.
- Repeat steps number 7 - 9 to disable basic authentication on all clusters.
