STIGhubSTIGhub
STIGsSearchCompareAbout

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Container Platform Security Requirements Guide

V-233038

CAT II (Medium)

The container platform must generate audit records for all DoD-defined auditable events within all components in the platform.

Rule ID

SV-233038r960879_rule

STIG

Container Platform Security Requirements Guide

Version

V2R4

CCIs

CCI-000169

Discussion

Within the container platform, audit data can be generated from any of the deployed container platform components. This audit data is important when there are issues, including security incidents that must be investigated. To make the audit data worthwhile for the investigation of events, it is necessary to have the appropriate and required data logged. To handle the need to log DoD-defined auditable events, the container platform must offer a mechanism to change and manage the events that are audited.

Check Content

Review the container platform configuration to determine if the container platform is configured to generate audit records for all DoD-defined auditable events within all components in the platform. 

Generate DoD-defined auditable events within all the components to determine if the events are being audited. 

If the container platform is not configured to generate audit records for all DoD-defined auditable events within the components or the events are  not generating audit records, this is a finding.

Fix Text

Configure the container platform to generate audit records for all DoD-defined auditable events within all the components of the container platform.