Guide to the Secure Configuration of Red Hat OpenShift Container Platform 4
Rules, Groups, and Values defined within the XCCDF Benchmark
-
OpenShift Kube API Server config name
OpenShift Kube API Server config nameValue -
OpenShift Kube API Server config data name
OpenShift Kube API Server config data nameValue -
OpenShift Kube APIServer namespace
OpenShift Kube APIServer namespaceValue -
Disable the AlwaysAdmit Admission Control Plugin
To ensure OpenShift only responses to requests explicitly allowed by the admission control plugin. Check that the <code>config</code> ConfigMap obj...Rule Medium Severity -
Ensure that the Admission Control Plugin AlwaysPullImages is not set
The <code>AlwaysPullImages</code> admission control plugin should be disabled, since it can introduce new failure modes for control plane component...Rule High Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules