From 02d5654cc104d482a5c6436137eea485be00afdf Mon Sep 17 00:00:00 2001
From: Liz Rice <liz@lizrice.com>
Date: Tue, 14 May 2019 19:37:44 +0100
Subject: [PATCH] Correct 1.1.14 in 1.13/master.yaml

---
 cfg/1.13/master.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/cfg/1.13/master.yaml b/cfg/1.13/master.yaml
index e2ac93a..6a36b9e 100644
--- a/cfg/1.13/master.yaml
+++ b/cfg/1.13/master.yaml
@@ -220,12 +220,15 @@ groups:
     text: "Ensure that the admission control plugin NamespaceLifecycle is set (Scored)"
     audit: "ps -ef | grep $apiserverbin | grep -v grep"
     tests:
+      bin_op: or
       test_items:
       - flag: "--disable-admission-plugins"
         compare:
           op: nothave
           value: "NamespaceLifecycle"
         set: true
+      - flag: "--disable-admission-plugins"
+        set: false
     remediation: |
       Edit the API server pod specification file $apiserverconf
       on the master node and set the --disable-admission-plugins parameter to