File: shared.yml

package info (click to toggle)
scap-security-guide 0.1.78-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 114,600 kB
  • sloc: xml: 245,305; sh: 84,381; python: 33,093; makefile: 27
file content (60 lines) | stat: -rw-r--r-- 1,724 bytes parent folder | download | duplicates (2)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
checktext: |-
  Determine if cluster log forwarding is configured by performing the
  following commands.

  Verify that the cluster-logging operator is installed:

  > oc get subscription/cluster-logging -n openshift-logging 
  NAME            PACKAGE         SOURCE            CHANNEL 
  cluster-logging cluster-logging redhat-operators  stable

  If the cluster-logging operator is not present, this is a finding.

fixtext: |-
  To resolve this, the OpenShift Cluster Logging operator first needs to
  be installed, then the Cluster Log Forwarder is configured to forward
  logs to a centralized log aggregation service.

  In order to install the OpenShift Cluster Logging operator, Run the
  following command to apply the subscription manifests to your cluster:

  > oc apply -f - << 'EOF' --- 
  apiVersion: project.openshift.io/v1 
  kind:Project 
  metadata:
    labels:
      kubernetes.io/metadata.name: openshift-logging
      openshift.io/cluster-monitoring: "true"
    name: openshift-logging
  spec: {} 
  ...  
  --- 
  apiVersion: operators.coreos.com/v1 
  kind: OperatorGroup
  metadata:
    name: openshift-logging 
    namespace: openshift-logging
  spec:
    targetNamespaces: 
    - openshift-logging
  ...  
  --- 
  apiVersion: operators.coreos.com/v1alpha1 
  kind: Subscription
  metadata:
    labels:
      operators.coreos.com/cluster-logging.openshift-logging: ""
    name: cluster-logging 
    namespace: openshift-logging
  spec:
    channel: stable 
    installPlanApproval: Automatic 
    name: cluster-logging
    source: redhat-operators 
    sourceNamespace: openshift-marketplace
  ...  
  EOF

srg_requirement: |-
  The container platform must initiate session auditing upon startup.