Why It Matters?
Privilege escalation attacks allow adversaries to move from low-level access to high-impact capabilities within a system. By requiring additional friction like MFA before granting elevated privileges, you limit the blast radius of compromised credentials.
What Exactly Does This Policy Do?
This policy helps prevent attackers from gaining administrative permissions on your Kubernetes clusters. The policy can be further enhanced by adding other contextual attributes and additional friction, such as Approval Workflows.
