III - Administrative Public
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000414-CTR-001010
<GroupDescription></GroupDescription>Group -
Vulnerability scanning must be enabled for all repositories in MSR.
<VulnDiscussion>Enabling vulnerability scanning for all repositories in Mirantis Secure Registry (MSR) is a critical security practice that h...Rule Medium Severity -
SRG-APP-000454-CTR-001110
<GroupDescription></GroupDescription>Group -
Older Universal Control Plane (MKE) and Docker Trusted Registry (DTR) images must be removed from all cluster nodes upon upgrading.
<VulnDiscussion>When upgrading either the UCP or DTR components of MKE, the newer images are pulled (or unpacked if offline) onto engine node...Rule Medium Severity -
SRG-APP-000456-CTR-001130
<GroupDescription></GroupDescription>Group -
MKE must contain the latest updates.
<VulnDiscussion>MKE must stay up to date with the latest patches, service packs, and hot fixes. Not updating MKE will expose the organization...Rule Medium Severity -
SRG-APP-000068-CTR-000120
<GroupDescription></GroupDescription>Group -
MKE must display the Standard Mandatory DOD Notice and Consent Banner before granting access to platform components.
<VulnDiscussion>MKE has countless components where different access levels are needed. To control access, the user must first log in to MKE a...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules