UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

In an MSR organization, user permissions and repositories must be configured.


Overview

Finding ID Version Rule ID IA Controls Severity
V-260904 CNTR-MK-000430 SV-260904r966069_rule Medium
Description
Configuring user permissions, organizations, and repositories in MSR is crucial for maintaining a secure, organized, and efficient container image management environment. This will provide access control, security, and compliance when utilizing MSR.
STIG Date
Mirantis Kubernetes Engine Security Technical Implementation Guide 2024-04-10

Details

Check Text ( C-64633r966067_chk )
If MSR is not being utilized, this is Not Applicable.

Verify the organization, user permissions, and repositories in MSR are configured per the System Security Plan (SSP). Obtain and review the SSP.

1. Log in to the MSR web UI as Admin and navigate to "Organizations". Verify the list of organizations are setup per the SSP.

2. Navigate to "Users" and verify that the list of users are assigned to appropriate organizations per the SSP.

3. Click on the user and verify the assigned repositories are appropriate per the SSP.

If the organization, user, or assigned repositories in MSR are not configured per the SSP, this is a finding.
Fix Text (F-64541r966068_fix)
If MSR is not being utilized, this is Not Applicable.

Set the organizations, user permissions, and repositories in MSR so they are configured per the SSP.

1. Modify Organizations according to the SSP by logging in to the MSR web UI as Admin and navigating to Organizations.

To delete an Organization:
- Click on the "Organization".
- Click the "Settings Tab".
- Click "Delete".
- Confirm and click "Delete".

To Add an Organization:
- Click "New organization".
- Input the Organization name.
- Click "Save".

To Assign Users to an Organization:
- Click on an Organization.
- Under the Members tab, click "Add user".
- Select "New" or "Existing".
- Fill in User information.
- Click "Save".

2. Modify Users according to the SSP.
- Navigate to "Users".

To add a User:
- Click "New User".
- Fill in User information.
- Click "Save".

To Delete a User:
- Click on the "User".
- Select "Settings Tab".
- Click "Delete User".
- Confirm and click "Delete".

3. Modify Repositories according to the SSP:
- Click on the User.
- Under the Repositories tab, modify the assigned repositories to what is appropriate per the SSP.