Add extra args to improve CIS Benchmark results

[abhay-krishna]

• Add extra args to controlplane components for improving CIS benchmark results.
• Enable auditing with appropriate params

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

[jaxesn]

Does this cover all the cis issues? I think they may have been some warnings related to tls algorithms?

As follow up PRs, we should add a page in our docs similar to other vendors with our results. It would also be nice to add kube bench as a part of one of e2e test to make sure we dont every break these.

[abhay-krishna]

/retest

[abhay-krishna]

/retest

[micahhausler]

/lgtm

Nicely done!

[eks-distro-bot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: abhay-krishna, micahhausler

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [abhay-krishna,micahhausler]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[abhay-krishna]

/retest

[eks-distro-bot]

@abhay-krishna: The following test failed, say /retest to rerun all failed tests:

Test name	Commit	Details	Rerun command
eks-anywhere-presubmit	997f041	link	/test eks-anywhere-presubmit

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.