Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
MSR telemetry must be disabled.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-260919 | CNTR-MK-000510 | SV-260919r966114_rule | Medium |
| Description |
|---|
| MSR provides a telemetry service that automatically records and transmits data to Mirantis through an encrypted channel for monitoring and analysis purposes. While this channel is secure, it introduces an attack vector and must be disabled. |
| STIG | Date |
|---|---|
| Mirantis Kubernetes Engine Security Technical Implementation Guide | 2024-06-17 |
Details
| Check Text ( C-64648r966112_chk ) |
|---|
| If MSR is not being utilized, this is Not Applicable. Verify that usage and API analytics tracking is disabled in MSR. Log in to the MSR web UI and navigate to System >> General Tab. Scroll to the "Analytics" section. If the "Send data" option is enabled, this is a finding. |
| Fix Text (F-64556r966113_fix) |
|---|
| If MSR is not being utilized, this is Not Applicable. Disable usage and API analytics tracking in MSR. Log in to the MSR web UI and navigate to System >> General Tab. Scroll to the "Analytics" section. Click the "Send data" slider to disable this capability. |