Prisma Cloud Compute Defender must be deployed to containerization nodes that are to be monitored.
An XCCDF Rule
Description
<VulnDiscussion>Container platforms distribute workloads across several nodes. The ability to uniquely identify an event within an environment is critical. Prisma Cloud Compute Container Runtime audits record the time, container, corresponding image, and node where the event occurred. Satisfies: SRG-APP-000097-CTR-000180, SRG-APP-000100-CTR-000200</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-253527r960897_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Navigate to Prisma Cloud Compute Console's >> Manage >> Defenders >> Manage tab.
Deploy Defender to containerization node:
- Select the method of Defender deployment.
- Configure the Defender policy.