This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

GKE security posture finding

Posted on 08-18-2023 01:01 PM
kaushik853
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hi Team,

Is the GKE security posture findings are integrated with Security command center(SCC) findings?

3 3 698
Topic Labels
3 REPLIES 3

Posted on --/--/---- --:-- AM
atul_shal
Bronze 4
Bronze 4
Reply posted on --/--/---- --:-- AM

Cluster specific GKE has it own security posture dashboard. Please feel free to read this article. It was in preview for some time but recently become GA (General available) as of 2th June, 2023

https://cloud.google.com/blog/products/identity-security/gke-security-posture-now-generally-availabl...

Please refer following link for more details- https://cloud.google.com/kubernetes-engine/docs/concepts/about-security-posture-dashboard

atul_shal_0-1692541990664.png

 

Container vulnerability findings are published on SCC.

 

Posted on --/--/---- --:-- AM
ktcjoe
Bronze 1
Bronze 1
In response to atul_shal
Reply posted on --/--/---- --:-- AM
Container vulnerability findings are published on SCC.

Thank you for the links! Sorry to resurrect an old thread but this is the most information I've been able to find about this issue. I'm a little confused by your final statement. Do you mean I should see container image vulnerability findings in SCC when a GKE workload container image has vulnerabilities?

I have not been able to get this to work. The GKE Security Posture dashboards shows them but they do not appear in SCC. I have looked everywhere I can think of but have not found a good explanation of what I'm doing wrong. The SCC Container Scanning documentation even claims to support the GKE version I'm running.

Thanks in advance for any help!

Posted on --/--/---- --:-- AM
hammersmith
Staff
In response to ktcjoe
Reply posted on --/--/---- --:-- AM

You're not going crazy - GKE Security Posture findings do not currently flow into SCC. Stay tuned for some news here as this is definitely something we are working on!