Kubernetes Security Recommendations

For a secure TIBCO BPM Enterprise operation, it is necessary to secure operations of the Kubernetes environment in which you execute TIBCO BPM Enterprise. There are no TIBCO BPM Enterprise-specific security aspects for using Kubernetes. Some of the Kubernetes security recommendations include:

  • Run containers as a non-root user

  • Enable role-based access

  • Enable TLS for each component

  • Scan container images

  • Monitor logs

  • Rotate encryption keys and certificates

  • Additional security measures for etcd cluster

When configuring Kubernetes, conform to the most updated security best practices. For details about how to secure operations on Kubernetes, see the latest Kubernetes documentation and other related resources.