STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

All audit records must generate the event results within the container platform.

DISA Rule

SV-233046r599537_rule

Vulnerability Number

V-233046

Group Title

SRG-APP-000099

Rule Version

SRG-APP-000099-CTR-000190

Severity

CAT II

CCI(s)

• CCI-000134 - The information system generates audit records containing information that establishes the outcome of the event.

Weight

10

Fix Recommendation

Configure the container platform to generate audit records that contain the event result.

Check Contents

Review the container platform configuration to determine if audit records contain the audit event results.

Generate audit records and review the data to validate that the record does contain the event result.

If the container platform is not configured to generate audit records with the event result or the audit record does not contain the event result, this is a finding.

Vulnerability Number

V-233046

Documentable

False

Rule Version

SRG-APP-000099-CTR-000190

Severity Override Guidance

Review the container platform configuration to determine if audit records contain the audit event results.

Generate audit records and review the data to validate that the record does contain the event result.

If the container platform is not configured to generate audit records with the event result or the audit record does not contain the event result, this is a finding.

Check Content Reference

M

Target Key

5239

Comments