STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Rancher Government Solutions Multi-Cluster Manager Security Technical Implementation Guide

V-252845

CAT II (Medium)

When allowed by the central authentication system, the default role assigned to a user must be User-Base.

Rule ID

SV-252845r960783_rule

STIG

Rancher Government Solutions Multi-Cluster Manager Security Technical Implementation Guide

Version

V2R2

CCIs

CCI-001404

Discussion

Rancher MCM uses roles for authentication. It is necessary to ensure the proper roles and permissions are configured. The role used by default does not ensure least privilege. The default role needs to be changed to allow least privilege access.

Check Content

Verify User-Base is the default assigned role:
-From the GUI, navigate to Triple Bar Symbol(Global) >> Users & Authentication >> Roles. 
-Click "Standard User".
-At the top right, click the three dots, and then choose "Edit Config".
-Under "New User Default", ensure "No" is selected. 
-Click "User-Base".
-At the top right, click the three dots, and then "Edit Config".
-Under "New User Default", ensure "Yes" is selected.

If "No" is not selected for Standard User, this is a finding. 

If "Yes" is not selected for User-Base, this is a finding.

Fix Text

From the GUI, navigate to Triple Bar Symbol(Global) >> Users & Authentication >> Roles.
-Click "Standard User".
-At the top right, click the three dots, and then "Edit Config".
-Under "New User Default", select "No" and click "Save".
-Click "User-Base".
-At the top right, click the three dots, and then click "Edit Config".
-Under "New User Default", select "Yes", and then click "Save".