Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-233114 | SRG-APP-000211-CTR-000530 | SV-233114r601743_rule | Medium |
Description |
---|
Separating user functionality from management functionality is a requirement for all the components within the container platform. Without the separation, users may have access to management functions that can degrade the container platform and the services being offered and can offer a method to bypass testing and validation of functions before introduced into a production environment. The separation should be enforced by each component within the container platform. |
STIG | Date |
---|---|
Container Platform Security Requirements Guide | 2021-12-14 |
Check Text ( C-36050r601742_chk ) |
---|
Review the container platform configuration to determine if management functionality is separated from user functionality. Validate that the separation is also implemented within the components by trying to execute management functions for each component as a user. If the container platform is not configured to separate management and user functionality or if component management and user functionality are not separated, this is a finding. |
Fix Text (F-36018r600830_fix) |
---|
Configure the container platform and its components to separate management and user functionality. |