Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Resources
Documents
Publishers
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat OpenShift Container Platform 4
Kubernetes Settings
OpenShift - Confinement
OpenShift - Confinement
An XCCDF Group - A logical subset of the XCCDF Benchmark
Details
Profiles
Prose
OpenShift - Confinement
1 Rule
Contains evaluations to configure and assess the confinement of the cluster's applications and workloads.
Make sure the Security Profiles Operator is installed
Medium Severity
Security Profiles Operator provides a way to define secure computing (seccomp) profiles and SELinux profiles as custom resources that are syncrhonized to every node in a given namespace. Using security profiles can increase security at the container level in your cluster. Seccomp security profiles list the syscalls a process can make, and SELinux security profiles provide a label-based system that restricts access and usage of processes, applications, and files.