Skip to content

Red Hat OpenShift Container Platform 4.12 Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • OpenShift must take appropriate action upon an audit failure.

    <VulnDiscussion>It is critical that when the container platform is at risk of failing to process audit logs as required that it takes action ...
    Rule Medium Severity
  • SRG-APP-000111-CTR-000220

    <GroupDescription></GroupDescription>
    Group
  • OpenShift components must provide the ability to send audit logs to a central enterprise repository for review and analysis.

    &lt;VulnDiscussion&gt;Sending audit logs to a central enterprise repository allows for centralized log management. Instead of scattered logs across...
    Rule Medium Severity
  • SRG-APP-000116-CTR-000235

    <GroupDescription></GroupDescription>
    Group
  • OpenShift must use internal system clocks to generate audit record time stamps.

    &lt;VulnDiscussion&gt;Knowing when a sequence of events for an incident occurred is crucial to understand what may have taken place. Without a comm...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules