Ensure Tencent Cloud TKE clusters enable log agent

Description

This policy checks whether the log agent is enabled for Tencent Cloud TKE clusters. Enabling the log agent is important for monitoring and auditing purposes, as it allows for the collection and analysis of logs from the cluster. Without log agent enabled, it may be difficult to detect security incidents or troubleshoot issues. By enabling the log agent, users can gain better visibility into their cluster's activity and improve their overall security posture.

Code Example

terraform

resource "tencentcloud_kubernetes_cluster" "example" {
  log_agent {
    enabled = true
  }
}

Remediation

Enable the log agent for the Tencent Cloud TKE cluster by setting the 'log_agent/enabled' property to True.

Rule Details

Field	Value
ID	IAC-1323
Severity	MEDIUM
IaC Type	Terraform
Frameworks	tencentcloud_kubernetes_cluster
Checkov ID	CKV_TC_6

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Ensure Tencent Cloud TKE clusters enable log agent

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Ensure Tencent Cloud TKE clusters enable log agent ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Ensure Tencent Cloud TKE clusters enable log agent

Description

Code Example

Remediation

Rule Details

References