Skip to main content

Security enhancement features for M-FKE

FPT Cloud Managed Kubernetes Engine (M-FKE) provides multiple security enhancement features for clusters.

Available security features:

  • Benchmark Security: Evaluates worker node kubelet configuration against CIS (Center for Internet Security) standards.
  • Runtime Security: Detects anomalous behavior in Kubernetes clusters in real time using Falco. You can receive alerts via Telegram or Gmail.
  • Workload Scan: Scans for security vulnerabilities in container images, evaluates RBAC configuration, and generates configuration audit reports using Trivy.
  • Audit Log: Records all API requests and operations sent to the kube-apiserver, supporting security analysis and compliance.
note

All security enhancement features are only available after the cluster is successfully created (status: Succeeded/Running).

Last updated on by Dang Tran