Jul 09 2020 09:23 AM - last edited on Nov 29 2021 11:28 AM by Allen
Hi all,
Within ASC and "Vulnerabilities in security configuration on your machines should be remediated" my AKS nodes are being reported as requiring remediation.
If I were to remediate these they'll just come back if I scale out/in or upgrade? Also, as these are AKS nodes, shouldn't they be excluded or be patched already?
Name |
State |
|
Disable SMB V1 with Samba |
Critical |
Open |
Run AuditD service |
Critical |
Open |
IP forwarding should be disabled. (net.ipv4.ip_forward = 0) |
Critical |
Open |
Anyone else experienced this? Or remediated?
Jul 13 2020 01:39 AM
According to Azure support this is by design and they don't have plans to change it, many other users have this issue too, apparently...
I've put it on Azure feedback if anyone wants to vote it up https://feedback.azure.com/forums/347535-azure-security-center/suggestions/40878643-vm-scale-sets-ma...