Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat OpenShift Container Platform 4
Kubernetes Settings
System and Software Integrity
System Cryptographic Policies
Ensure that LUKS is configured on worker nodes
Ensure that LUKS is configured on worker nodes
An XCCDF Rule
Details
Profiles
Prose
Ensure that LUKS is configured on worker nodes
High Severity
OpenShift has an installation-time flag that can enable LUKS (TPM2 or TANG) full disk encryption at installation. The object
luks
must be present at install time in the
machineconfig
file prepared with the
install-config.yaml
file.