STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must initiate session auditing upon startup.

DISA Rule

SV-233041r599714_rule

Vulnerability Number

V-233041

Group Title

SRG-APP-000092

Rule Version

SRG-APP-000092-CTR-000165

Severity

CAT II

CCI(s)

• CCI-001464 - The information system initiates session audits at system start-up.

Weight

10

Fix Recommendation

Configure the container platform to generate audit logs for session logging at startup. Revise all applicable system documentation.

Check Contents

Review the container platform configuration for session audits.

Ensure audit policy for session logging at startup is enabled.

Verify events are written to the log.

Validate system documentation is current.

If the container platform is not configured to meet this requirement, this is a finding.

Vulnerability Number

V-233041

Documentable

False

Rule Version

SRG-APP-000092-CTR-000165

Severity Override Guidance

Review the container platform configuration for session audits.

Ensure audit policy for session logging at startup is enabled.

Verify events are written to the log.

Validate system documentation is current.

If the container platform is not configured to meet this requirement, this is a finding.

Check Content Reference

M

Target Key

5239

Comments