Check: CNTR-PC-001490
Palo Alto Networks Prisma Cloud Compute STIG:
CNTR-PC-001490
(in versions v1 r3 through v1 r1)
Title
Configuration of Prisma Cloud Compute must be continuously verified. (Cat II impact)
Discussion
Prisma Cloud Compute's configuration of Defender deployment must be monitored to ensure monitoring and protection of the environment is in accordance with organizational policy.
Check Content
Navigate to Prisma Cloud Compute Console's >> Manage >> Defenders. Select the "Manage" tab. Select the "Defenders" tab. Determine the deployment status of the Defenders. If a Defender is not deployed to intended workload(s) to be protected, this is a finding.
Fix Text
Navigate to Prisma Cloud Compute Console's >> Manage >> Defenders. Select the "Manage" tab. Select the "Defenders" tab. Deploy Defender to containerization node. Select the method of Defender deployment. https://docs.paloaltonetworks.com/prisma/prisma-cloud/22-01/prisma-cloud-compute-edition-admin/install/defender_types.html
Additional Identifiers
Rule ID: SV-253551r879844_rule
Vulnerability ID: V-253551
Group Title: SRG-APP-000473-CTR-001175
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-002669 |
The organization uses the traffic/event profiles in tuning system-monitoring devices to reduce the number of false positives and false negatives. |
CCI-002699 |
The information system performs verification of the correct operation of organization-defined security functions: when the system is in an organization-defined transitional state; upon command by a user with appropriate privileges; and/or on an organization-defined frequency. |