STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

DISA Rule

SV-233031r599515_rule

Vulnerability Number

V-233031

Group Title

SRG-APP-000065

Rule Version

SRG-APP-000065-CTR-000115

Severity

CAT II

CCI(s)

• CCI-000044 - The information system enforces the organization-defined limit of consecutive invalid logon attempts by a user during the organization-defined time period.

Weight

10

Fix Recommendation

Configure the container platform to enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

Check Contents

Review the container platform to determine if it is configured to enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

If the container platform is not configured to enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period, this is a finding.

Vulnerability Number

V-233031

Documentable

False

Rule Version

SRG-APP-000065-CTR-000115

Severity Override Guidance

Review the container platform to determine if it is configured to enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

If the container platform is not configured to enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period, this is a finding.

Check Content Reference

M

Target Key

5239

Comments