Skip to content
Log In

Rancher Government Solutions Multi-Cluster Manager Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Rancher MCM must enforce organization-defined circumstances and/or usage conditions for organization-defined accounts.

    Rancher MCM must verify the certificate used for Rancher's ingress is a valid DOD certificate. This is achieved by verifying the helm installation contains correct parameters.
    Rule Medium Severity
    Show

  • SRG-APP-000026-CTR-000070

    Group
    Show

  • Rancher MCM must generate audit records for all DoD-defined auditable events within all components in the platform.

    Audit logs must be enabled. Rancher MCM provides audit record generation capabilities. Audit logs capture what happened, when it happened, who initiated it, and what cluster it affected to ensure ...
    Rule Medium Severity
    Show

  • SRG-APP-000028-CTR-000080

    Group
    Show

  • When allowed by the central authentication system, the default role assigned to a user must be User-Base.

    Rancher MCM uses roles for authentication. It is necessary to ensure the proper roles and permissions are configured. The role used by default does not ensure least privilege. The default role need...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules