MKE telemetry must be disabled.
An XCCDF Rule
Description
<VulnDiscussion>MKE provides a telemetry service that automatically records and transmits data to Mirantis through an encrypted channel for monitoring and analysis purposes. While this channel is secure, it introduces an attack vector and must be disabled.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-260918r966111_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Disable usage and API analytics tracking in MKE.
Log in to the MKE web UI and navigate to admin >> Admin Settings >> Usage.
Uncheck both the "Enable hourly usage reporting" and "Enable API and UI tracking" options.