Blog article

Kubernetes does not offer a simple way to manage the underlying virtual machines (yet), but you can use a configuration management tool like Terraform, Chef, Puppet, or Ansible. 

Whether you’re running your own self-managed Kubernetes and have access to both the master and worker nodes or your Kubernetes engine is cloud-managed so you only have access to the worker nodes , securing your nodes and configurations are essential.

Some best practices:

• Always update your operating systems with the latest patches. 
• Set up automatic security updates. 
• Use antivirus software. 
• Install a vulnerability scanning agent on your network. 
• Export your security and audit logs to a centralized server outside the cluster so you can properly detect and respond to any threats. 
• Configure your IAM, network security and network policy.
• Limit/restrict access to your VMs to only people who need access.

Have you already done any or all of the above? If not and you want to start, let us know and we can help!