UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

All audit records must identify what type of event has occurred within the container platform.


Overview

Finding ID Version Rule ID IA Controls Severity
V-233042 SRG-APP-000095-CTR-000170 SV-233042r960891_rule Medium
Description
Within the container platform, audit data can be generated from any of the deployed container platform components. This audit data is important when there are issues, such as security incidents, that must be investigated. To make the audit data worthwhile for the investigation of events, it is necessary to know what type of event occurred.
STIG Date
Container Platform Security Requirements Guide 2024-05-28

Details

Check Text ( C-35978r601620_chk )
Review the container platform configuration for audit event types. Ensure audit policy for event type is enabled.

Verify records showing what type of event occurred are written to the log.

Validate system documentation is current.

If log data does not show the type of event, this is a finding.
Fix Text (F-35946r600614_fix)
Configure the container platform to include the event type in the log data. Revise all applicable system documentation.