Security


Admission Configuration for the `PodSecurity` Admission Plugin

Adding custom configuration for the PodSecurity plugin in .spec.kubernetes.kubeAPIServer.admissionPlugins

Audit a Kubernetes Cluster

How to define a custom audit policy through a ConfigMap and reference it in the shoot spec

Default Seccomp Profile

Enable the use of RuntimeDefault as the default seccomp profile through spec.kubernetes.kubelet.seccompDefault

ETCD Encryption Config

Specifying resource types for encryption with spec.kubernetes.kubeAPIServer.encryptionConfig

OpenIDConnect Presets

Shoot Serviceaccounts