Hey there! I am trying to install Rancher in our cluster and we have several alarms created by security department. One of them is being triggered:

user system:anonymous was granted API permissions on the EKS cluster aus-platform-core | default service account in EKS Cluster aus-platform-core was granted admin privileges by user systemserviceaccountcattle-system:rancher

Is there anyway to avoid "system:anonymous" get admin privileges from rancher account?

can you show the RBAC or component configuration that your scanning tool believes is granting that?