CNTR-K8-000920 - The Kubernetes API Server must enforce ports, protocols, and services (PPS) that adhere to the Ports, Protocols, and Services Management Category Assurance List (PPSM CAL).

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Kubernetes API Server PPSs must be controlled and conform to the PPSM CAL. Those PPS that fall outside the PPSM CAL must be blocked. Instructions on the PPSM can be found in DoD Instruction 8551.01 Policy.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Amend any system documentation requiring revision. Update Kubernetes API Server manifest and namespace PPS configuration to comply with PPSM CAL.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Kubernetes_V2R1_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000382, Rule-ID|SV-242410r960966_rule, STIG-ID|CNTR-K8-000920, Vuln-ID|V-242410

Plugin: Unix

Control ID: 3b46c7cf7d109b390b6c9bc7093b47b95337dc5d9a8e26c829afa8ba3385927c