STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Container Platform Security Requirements Guide

V-233206

CAT II (Medium)

The container platform must audit non-local maintenance and diagnostic sessions' organization-defined audit events associated with non-local maintenance.

Rule ID

SV-233206r961548_rule

STIG

Container Platform Security Requirements Guide

Version

V2R4

CCIs

CCI-002884

Discussion

To fully investigate an attack, it is important to understand the event and those events taking place during the same time period. Often, non-local administrative access and diagnostic sessions are not logged. These events are seen as only administrative functions and not worthy of being audited, but these events are important in any investigation and are a major tool for assessing and investigating attacks.

Check Content

Review the container platform to verify if the platform is auditing non-local maintenance and diagnostic sessions' organization-defined audit events. 

If the container platform is not auditing non-local maintenance and diagnostic sessions' organization-defined audit events, this is a finding.

Fix Text

Configure the container platform to audit non-local maintenance and diagnostic sessions' organization-defined audit events.