STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to STIGs

Rancher Government Solutions Multi-Cluster Manager Security Technical Implementation Guide

Version

V2R2

Release Date

Nov 20, 2025

SCAP Benchmark ID

Rancher_MCM_STIG

Total Checks

7

Tags

other
CAT I: 2CAT II: 5CAT III: 0

This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Export CKLExport CSVExport JSONDownload STIG ZIP

Checks (7)

V-252843HIGHRancher MCM must use a centralized user management solution to support account management functions. For accounts using password authentication, the container platform must use FIPS-validated SHA-2 or later protocol to protect the integrity of the password authentication process.V-252844MEDIUMRancher MCM must generate audit records for all DoD-defined auditable events within all components in the platform.V-252845MEDIUMWhen allowed by the central authentication system, the default role assigned to a user must be User-Base.V-252846MEDIUMRancher MCM must allocate audit record storage and generate audit records associated with events, users, and groups.V-252847MEDIUMRancher MCM must never automatically remove or disable emergency accounts.V-252849HIGHRancher MCM must prohibit or restrict the use of protocols that transmit unencrypted authentication information or use flawed cryptographic algorithms for transmission.V-257292MEDIUMRancher MCM must enforce organization-defined circumstances and/or usage conditions for organization-defined accounts.