An error occurred:

Check: SRG-APP-000400-CTR-000960

Container Platform SRG: SRG-APP-000400-CTR-000960 (in versions v2 r2 through v1 r0.1)

Title

The container platform must prohibit the use of cached authenticators after an organization-defined time period. (Cat II impact)

Discussion

If cached authentication information is out of date, the validity of the authentication information may be questionable.

Check Content

Review the container platform configuration to determine if the platform is configured to prohibit the use of cached authenticators after an organization-defined time period. If the container platform is not configured to prohibit the use of cached authenticators after an organization-defined time period, this is a finding.

Fix Text

Configure the container platform to prohibit the use of cached authenticators after an organization-defined time period.

Additional Identifiers

Rule ID: SV-233200r961521_rule

Vulnerability ID: V-233200

Group Title: SRG-APP-000400

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-002007

Prohibit the use of cached authenticators after an organization-defined time period.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
IA-5(13)

Expiration of Cached Authenticators