UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The container platform must map the authenticated identity to the individual user or group account for PKI-based authentication.


Overview

Finding ID Version Rule ID IA Controls Severity
V-233101 SRG-APP-000177-CTR-000465 SV-233101r879614_rule Medium
Description
The container platform and its components may require authentication before use. When the authentication is PKI-based, the container platform or component must map the certificate to a user account. If the certificate is not mapped to a user account, the ability to determine the identity of the individual user or group will not be available for forensic analysis.
STIG Date
Container Platform Security Requirements Guide 2023-11-30

Details

Check Text ( C-36037r600790_chk )
Review documentation and configuration to ensure the container platform provides a PKI integration capability that meets DoD PKI infrastructure requirements.

If the container platform is not configured to meet this requirement, this is a finding.
Fix Text (F-36005r600791_fix)
Configure the container platform to utilize the DoD Enterprise PKI infrastructure.