The container platform must implement the capability to centrally review and analyze audit records from multiple components within the system.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-263587 | SRG-APP-000745-CTR-000120 | SV-263587r982455_rule | CCI-003821 | medium |
| Description | ||||
| Automated mechanisms for centralized reviews and analyses include Security Information and Event Management products. | ||||
| STIG | Date | |||
| Container Platform Security Requirements Guide | 2025-05-15 | |||
Details
Check Text (C-263587r982455_chk)
Verify the container platform is configured to implement the capability to centrally review and analyze audit records from multiple components within the system.
If the container platform is not configured to implement the capability to centrally review and analyze audit records from multiple components within the system, this is a finding.
Fix Text (F-67395r981900_fix)
Configure the container platform to implement the capability to centrally review and analyze audit records from multiple components within the system.