STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform application program interface (API) must uniquely identify and authenticate users.

DISA Rule

SV-233076r599509_rule

Vulnerability Number

V-233076

Group Title

SRG-APP-000148

Rule Version

SRG-APP-000148-CTR-000340

Severity

CAT II

CCI(s)

• CCI-000764 - The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users).

Weight

10

Fix Recommendation

Configure the container platform to uniquely identify and authenticate users before container platform API access.

Check Contents

Review the container platform configuration to determine if users are uniquely identified and authenticated before the API is executed.

If users are not uniquely identified or are not authenticated, this is a finding.

Vulnerability Number

V-233076

Documentable

False

Rule Version

SRG-APP-000148-CTR-000340

Severity Override Guidance

Review the container platform configuration to determine if users are uniquely identified and authenticated before the API is executed.

If users are not uniquely identified or are not authenticated, this is a finding.

Check Content Reference

M

Target Key

5239

Comments