Prisma Cloud Compute Collections must be used to partition views and enforce organizational-defined need-to-know access.
An XCCDF Rule
Description
<VulnDiscussion>Prisma Cloud Compute Collections are used to scope rules to target specific resources in an environment, partition views, and enforce which views specific users and groups can access. Collections can control access to data on a need-to-know basis.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-253525r960801_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Navigate to Prisma Cloud Compute Console's >> Manage >> Collections and Tags >> Collections tab.
Create a collection:
- Click "Add Collection".
- Enter a name and description and then specify a filter to target specific resources.
- Click "Save".