💼 5.1.3 Minimize cluster access to read-only for Container Image repositories (Manual)

ID: /frameworks/cis-gke-v1.8.0/05/01/03

Description

Note: GCR is now deprecated, see the references for more details. Configure the Cluster Service Account with Artifact Registry Viewer Role to only allow read-only access to AR repositories. Configure the Cluster Service Account with Storage Object Viewer Role to only allow read-only access to GCR.

Similar

Sections
- /frameworks/cis-gke-v1.0.0/06/01/03

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS GKE v1.0.0 → 💼 6.1.3 Minimize cluster access to read-only for GCR (Scored)					no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Description​

Similar​

Similar Sections (Take Policies From)​

Sub Sections​

Description

Similar

Similar Sections (Take Policies From)

Sub Sections