Check: SRG-APP-000148-CTR-000340
Container Platform SRG:
SRG-APP-000148-CTR-000340
(in versions v1 r5 through v1 r1)
Title
The container platform application program interface (API) must uniquely identify and authenticate users. (Cat II impact)
Discussion
The container platform requires user accounts to perform container platform tasks. These tasks are often performed through the container platform API. Protecting the API from users who are not authorized or authenticated is essential to keep the container platform stable. Protection of platform and application data and enhances the protections put in place for Denial-of Service (DoS) attacks.
Check Content
Review the container platform configuration to determine if users are uniquely identified and authenticated before the API is executed. If users are not uniquely identified or are not authenticated, this is a finding.
Fix Text
Configure the container platform to uniquely identify and authenticate users before container platform API access.
Additional Identifiers
Rule ID: SV-233076r879589_rule
Vulnerability ID: V-233076
Group Title: SRG-APP-000148
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000764 |
The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users). |
Controls
| Number | Title |
|---|---|
| IA-2 |
Identification And Authentication (Organizational Users) |