The container platform must be configured with only essential configurations.

An XCCDF Rule

Details
Profiles
Prose

Description

<VulnDiscussion>The container platform can be built with components that are not used for the intended purpose of the organization. To limit the attack surface of the container platform, it is essential that the non-essential services are not installed.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-233071r879587_rule
Severity: Medium
References: CCI-000381
Updated: 9 months ago

Identify the role the container platform is intended to play in the production environment and remove any components that are not needed or used for the intended purpose.

The container platform must be configured with only essential configurations.

Description

Remediation - Manual Procedure