STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must generate audit records for all account creations, modifications, disabling, and termination events.

DISA Rule

SV-233269r599728_rule

Vulnerability Number

V-233269

Group Title

SRG-APP-000509

Rule Version

SRG-APP-000509-CTR-001305

Severity

CAT II

CCI(s)

• CCI-000172 - The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Weight

10

Fix Recommendation

Configure the container platform to generate audit records for all account creations, modifications, disabling, and termination events.

Check Contents

Review the container platform configuration to determine if the container platform is configured to generate audit records for all account creations, modifications, disabling, and termination events.

If the container platform is not configured to generate the audit records, this is a finding.

Vulnerability Number

V-233269

Documentable

False

Rule Version

SRG-APP-000509-CTR-001305

Severity Override Guidance

Review the container platform configuration to determine if the container platform is configured to generate audit records for all account creations, modifications, disabling, and termination events.

If the container platform is not configured to generate the audit records, this is a finding.

Check Content Reference

M

Target Key

5239

Comments