Welcome to the Linux Foundation Forum!

kube bench, kubelet and --allow-privleged

Hello I am working through the labs and going through kube-bench results. One of the results is

2.1.1 Edit the kubelet service file /etc/systemd/system/kubelet.service.d/10-kubeadm.conf
on each worker node and set the below parameter in KUBELET_SYSTEM_PODS_ARGS variable.
--allow-privileged=false

looking through that conf file, it is running kubelet with parameters. When I try to run kubelet with the --allow-privileged flag, I get an error saying that flag is supported. Upon further research, it looks like that flag is deprecated, and also the lab uses kube-bench version 0.3.1, while the current version is 0.6.3.

Is there a recommendation on how I can setup a lab environment that will give accurate results, and will mimic what I will see on the exam?

Please let me know.

Categories

Upcoming Training