You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
To Meet Security Standards for not automatically mounting service accounts
for compliance in Gov Clouds
Note: That the service account token can be mounted manually as a volume
How should the problem be solved?
Helm Chart should, by default, set automountServiceAccountToken to true for all Linkerd Pods (to not change the current behavior)
but will have the option to change it to "false"
What problem are you trying to solve?
To Meet Security Standards for not automatically mounting service accounts
for compliance in Gov Clouds
Note: That the service account token can be mounted manually as a volume
How should the problem be solved?
Helm Chart should, by default, set automountServiceAccountToken to true for all Linkerd Pods (to not change the current behavior)
but will have the option to change it to "false"
Any alternatives you've considered?
None; it's part of compliance tasks
https://learn.microsoft.com/en-us/azure/governance/policy/samples/built-in-policies
https://www.azadvertizer.net/azpolicyadvertizer/kubernetes_block-automount-token.html
How would users interact with this feature?
Set it to true in the helm chart for LInkerd to harden the security of the cluster to
Would you like to work on this feature?
maybe
The text was updated successfully, but these errors were encountered: