STIGhubSTIGhub
STIGsSearchCompareAbout

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Container Platform Security Requirements Guide

V-233114

CAT II (Medium)

The container platform must separate user functionality (including user interface services) from information system management functionality.

Rule ID

SV-233114r1137643_rule

STIG

Container Platform Security Requirements Guide

Version

V2R4

CCIs

CCI-001082

Discussion

Separating user functionality from management functionality is a requirement for all the components within the container platform. Without the separation, users may have access to management functions that can degrade the container platform and the services being offered and can offer a method to bypass testing and validation of functions before introduced into a production environment. The separation should be enforced by each component within the container platform. This requirement also applies to Zero Trust initiatives.

Check Content

Review the container platform configuration to determine if management functionality is separated from user functionality. 

Validate that the separation is also implemented within the components by trying to execute management functions for each component as a user. 

If the container platform is not configured to separate management and user functionality or if component management and user functionality are not separated, this is a finding.

Fix Text

Configure the container platform and its components to separate management and user functionality.