SRG-APP-000219-CTR-000550 Controls

STIG IDVersionTitleProduct
CNTR-OS-000510V2R5OpenShift must protect authenticity of communications sessions with the use of FIPS-validated 140-2 or 140-3 validated cryptography.Red Hat OpenShift Container Platform
CNTR-K8-001400V2R6The Kubernetes API server must use approved cipher suites.Security Requirements Guide - Kubernetes
CNTR-K8-001410V2R6Kubernetes API Server must have the SSL Certificate Authority set.Security Requirements Guide - Kubernetes
CNTR-K8-001420V2R6Kubernetes Kubelet must have the SSL Certificate Authority set.Security Requirements Guide - Kubernetes
CNTR-K8-001430V2R6Kubernetes Controller Manager must have the SSL Certificate Authority set.Security Requirements Guide - Kubernetes
CNTR-K8-001440V2R6Kubernetes API Server must have a certificate for communication.Security Requirements Guide - Kubernetes
CNTR-K8-001450V2R6Kubernetes etcd must enable client authentication to secure service.Security Requirements Guide - Kubernetes
CNTR-K8-001460V2R6Kubernetes Kubelet must enable tlsPrivateKeyFile for client authentication to secure service.Security Requirements Guide - Kubernetes
CNTR-K8-001470V2R6Kubernetes Kubelet must enable tlsCertFile for client authentication to secure service.Security Requirements Guide - Kubernetes
CNTR-K8-001480V2R6Kubernetes etcd must enable client authentication to secure service.Security Requirements Guide - Kubernetes
CNTR-K8-001490V2R6Kubernetes etcd must have a key file for secure communication.Security Requirements Guide - Kubernetes
CNTR-K8-001500V2R6Kubernetes etcd must have a certificate for communication.Security Requirements Guide - Kubernetes
CNTR-K8-001510V2R6Kubernetes etcd must have the SSL Certificate Authority set.Security Requirements Guide - Kubernetes
CNTR-K8-001520V2R6Kubernetes etcd must have a certificate for communication.Security Requirements Guide - Kubernetes
CNTR-K8-001530V2R6Kubernetes etcd must have a key file for secure communication.Security Requirements Guide - Kubernetes
CNTR-K8-001540V2R6Kubernetes etcd must have peer-cert-file set for secure communication.Security Requirements Guide - Kubernetes
CNTR-K8-001550V2R6Kubernetes etcd must have a peer-key-file set for secure communication.Security Requirements Guide - Kubernetes
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.