Azure AKS cluster is not configured with disk encryption set

Description

Disk encryption is a security measure that encrypts the data on a disk to protect it from unauthorized access or tampering. When disk encryption is enabled for AKS, it encrypts the data on the disks that are used by the nodes in your cluster. This can help to protect your data from being accessed or modified by unauthorized users, even if the disks are physically stolen or the data is accessed from an unauthorized location.

Code Example

resource "azurerm_kubernetes_cluster" "example" {
              ...
 +            disk_encryption_set_id = "someId"
            }

Remediation

Terraform

Resource: azurerm_kubernetes_cluster
Arguments: disk_encryption_set_id

Rule Details

Field	Value
ID	IAC-0624
Severity	LOW
IaC Type	Terraform
Frameworks	Terraform, TerraformPlan
Checkov ID	CKV_AZURE_117

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Azure AKS cluster is not configured with disk encryption set

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Azure AKS cluster is not configured with disk encryption set ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Azure AKS cluster is not configured with disk encryption set

Description

Code Example

Remediation

Rule Details

References