When you install and set up your Kubernetes clusters, the system includes two ready-to-use policies: Kube system and CBContainers dataplane.
The built-in policies are associated with built-in scopes. For more information about built-in scopes, see Built-in Kubernetes Scopes.
The policies are available as a starting point for your configuration, and you can either edit or delete them.
Tip: You can duplicate the policies and modify the duplicates, thereby maintaining the original policies for reference.
Built-in Policy | Assigned Scope |
---|---|
Kube system | Kubernetes System |
CBContainers dataplane | CBContainers dataplane |
As long as the built-in policies are not modified, the Last modified by parameter is Carbon Black. After you edit a policy, the Last modified by parameter changes.
The built-in policies include a subset of the built-in rules that are available for use in all Kubernetes hardening policies.