Prisma Cloud Compute Defender must be deployed to containerization nodes that are to be monitored.

An XCCDF Rule

Description

<VulnDiscussion>Container platforms distribute workloads across several nodes. The ability to uniquely identify an event within an environment is critical. Prisma Cloud Compute Container Runtime audits record the time, container, corresponding image, and node where the event occurred. Satisfies: SRG-APP-000097-CTR-000180, SRG-APP-000100-CTR-000200</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-253527r879565_rule
Severity: Medium
References: CCI-000132 CCI-001487
Updated: about 1 year ago

Navigate to Prisma Cloud Compute Console's >> Manage >> Defenders >> Manage tab. 

Deploy Defender to containerization node:
- Select the method of Defender deployment.
- Configure the Defender policy.

Prisma Cloud Compute Defender must be deployed to containerization nodes that are to be monitored.

Description

Remediation - Manual Procedure