STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must enforce access restrictions and support auditing of the enforcement actions.

DISA Rule

SV-233189r599509_rule

Vulnerability Number

V-233189

Group Title

SRG-APP-000381

Rule Version

SRG-APP-000381-CTR-000905

Severity

CAT II

CCI(s)

CCI-001814 - The Information system supports auditing of the enforcement actions.

Weight

Fix Recommendation

Configure the container platform to log the enforcement actions used to restrict access associated with changes.

Check Contents

Review container platform documentation and logs to determine if enforcement actions used to restrict access associated with changes to the container platform are logged.

If these actions are not logged, this is a finding.

Vulnerability Number

V-233189

Documentable

False

Rule Version

SRG-APP-000381-CTR-000905

Severity Override Guidance

Check Content Reference

Target Key

5239

The container platform must enforce access restrictions and support auditing of the enforcement actions.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments