CKS Question #2: Real Exam Question with Answer & Explanation

Sign in or unlock CKS to reveal the answer and full explanation for question #2. The question stem and answer options stay visible for context.

Submitted by andreas_gr· May 5, 2026Cluster Hardening

Question

Fix all issues via configuration and restart the affected components to ensure the new setting takes effect. Fix all of the following violations that were found against the API server:- a. Ensure the --authorization-mode argument includes RBAC b. Ensure the --authorization-mode argument includes Node c. Ensure that the --profiling argument is set to false Fix all of the following violations that were found against the Kubelet:- a. Ensure the --anonymous-auth argument is set to false. b. Ensure that the --authorization-mode argument is set to Webhook. Fix all of the following violations that were found against the ETCD:- a. Ensure that the --auto-tls argument is not set to true Hint: Take the use of Tool Kube-Bench

Unlock CKS to see the answer

You've previewed enough free CKS questions. Unlock CKS for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CKS - $49.99 / 30 days Sign in

Topics

#API Server Hardening#Kubelet Security#ETCD Configuration#CIS Benchmarks

Full CKS Practice Browse All CKS Questions