Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Prisma Cloud Compute must be configured with unique user accounts.
<VulnDiscussion>Sharing accounts, such as group accounts, reduces the accountability and integrity of Prisma Cloud Compute.</VulnDiscussio...Rule Medium Severity -
SRG-APP-000164-CTR-000400
<GroupDescription></GroupDescription>Group -
All Prisma Cloud Compute users must have a unique, individual account.
<VulnDiscussion>Prisma Cloud Compute does not have a default account. During installation, the installer creates an administrator. This accou...Rule Medium Severity -
SRG-APP-000148-CTR-000345
<GroupDescription></GroupDescription>Group -
Prisma Cloud Compute must be configured to scan images that have not been instantiated as containers.
<VulnDiscussion>Prisma Cloud Compute ships with "only scan images with running containers" set to "on". To meet the requirements, "only scan ...Rule High Severity -
SRG-APP-000023-CTR-000055
<GroupDescription></GroupDescription>Group -
SRG-APP-000390-CTR-000930
<GroupDescription></GroupDescription>Group -
Configuration of Prisma Cloud Compute must be continuously verified.
<VulnDiscussion>Prisma Cloud Compute's configuration of Defender deployment must be monitored to ensure monitoring and protection of the envi...Rule Medium Severity -
SRG-APP-000610-CTR-001385
<GroupDescription></GroupDescription>Group -
Prisma Cloud Compute Console must run as nonroot user (uid 2674).
<VulnDiscussion>Containers not requiring root-level permissions must run as a unique user account. To ensure accountability and prevent unaut...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.