Skip to content

Commit d6b5f3b

Browse files
author
Brian Tray
committed
Update to common terms
1 parent e279d6d commit d6b5f3b

7 files changed

+11
-11
lines changed

articles/operator-nexus/concepts-security.md

Lines changed: 11 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -61,11 +61,11 @@ Environmental controls such as RBAC and Service Account tests aren't evaluated b
6161

6262
**NTF = Not Technically Feasible**
6363

64-
### OpenSCAP STIG
64+
### OpenSCAP STIG - V2R2
6565

66-
*Undercloud*
66+
*Cluster*
6767

68-
:::image type="content" source="media/security/undercloud_openscap.png" alt-text="Screenshot of Undercloud OpenSCAP exceptions" lightbox="media/security/undercloud_openscap.png":::
68+
:::image type="content" source="media/security/nexus-cluster-openscap.png" alt-text="Screenshot of Cluster OpenSCAP exceptions" lightbox="media/security/nexus-cluster-openscap.png":::
6969

7070
|STIG ID|Recommendation description|Status|Issue|
7171
|---|---|---|---|
@@ -77,9 +77,9 @@ Environmental controls such as RBAC and Service Account tests aren't evaluated b
7777
|V-242434|Kubernetes Kubelet must enable kernel protection.|NTF|Enabling kernel protection isn't feasible for kubeadm in Nexus|
7878

7979

80-
*Nexus Kubernetes/NAKS*
80+
*Nexus Kubernetes Cluster*
8181

82-
:::image type="content" source="media/security/naks_openscap.png" alt-text="Screenshot of NAKS OpenSCAP exceptions" lightbox="media/security/naks_openscap.png":::
82+
:::image type="content" source="media/security/nexus-kubernetes-cluster-openscap.png" alt-text="Screenshot of Nexus Kubernetes Cluster OpenSCAP exceptions" lightbox="media/security/nexus-kubernetes-cluster-openscap.png":::
8383

8484
|STIG ID|Recommendation description|Status|Issue|
8585
|---|---|---|---|
@@ -95,14 +95,14 @@ Environmental controls such as RBAC and Service Account tests aren't evaluated b
9595

9696
As a secure service, Azure Kubernetes Service (AKS) complies with SOC, ISO, PCI DSS, and HIPAA standards. The following image shows the OpenSCAP file permission exceptions for the Cluster Manager AKS implementation.
9797

98-
:::image type="content" source="media/security/cm_openscap.png" alt-text="Screenshot of Cluster Manager OpenSCAP exceptions" lightbox="media/security/cm_openscap.png":::
98+
:::image type="content" source="media/security/nexus-cluster-manager-openscap.png" alt-text="Screenshot of Cluster Manager OpenSCAP exceptions" lightbox="media/security/nexus-cluster-manager-openscap.png":::
9999

100100

101101
### Aquasec Kube-Bench - CIS 1.9
102102

103-
*Undercloud*
103+
*Cluster*
104104

105-
:::image type="content" source="media/security/undercloud_kubebench.png" alt-text="Screenshot of Undercloud Kube-Bench exceptions" lightbox="media/security/undercloud_kubebench.png":::
105+
:::image type="content" source="media/security/nexus-cluster-kubebench.png" alt-text="Screenshot of Cluster Kube-Bench exceptions" lightbox="media/security/nexus-cluster-kubebench.png":::
106106

107107
|CIS ID|Recommendation description|Status|Issue|
108108
|---|---|---|---|
@@ -113,9 +113,9 @@ As a secure service, Azure Kubernetes Service (AKS) complies with SOC, ISO, PCI
113113
|1.1.12|Ensure that the `--kubelet-certificate-authority` argument is set as appropriate|NTF|Kubelet SANS includes hostname only|
114114

115115

116-
*Nexus Kubernetes/NAKS*
116+
*Nexus Kubernetes Cluster*
117117

118-
:::image type="content" source="media/security/naks_kubebench.png" alt-text="Screenshot of NAKS Kube-Bench exceptions" lightbox="media/security/naks_kubebench.png":::
118+
:::image type="content" source="media/security/nexus-kubernetes-cluster-kubebench.png" alt-text="Screenshot of Nexus Kubernetes Cluster Kube-Bench exceptions" lightbox="media/security/nexus-kubernetes-cluster-kubebench.png":::
119119

120120
|CIS ID|Recommendation description|Status|Issue|
121121
|---|---|---|---|
@@ -130,4 +130,4 @@ As a secure service, Azure Kubernetes Service (AKS) complies with SOC, ISO, PCI
130130

131131
The Operator Nexus Cluster Manager is an AKS implementation. The following image shows the Kube-Bench exceptions for the Cluster Manager. A full report of CIS Benchmark control evaluation for Azure Kubernetes Service (AKS) can be found [here](/azure/aks/cis-kubernetes)
132132

133-
:::image type="content" source="media/security/cm_kubebench.png" alt-text="Screenshot of Cluster Manager Kube-Bench exceptions" lightbox="media/security/cm_kubebench.png":::
133+
:::image type="content" source="media/security/nexus-cluster-manager-kubebench.png" alt-text="Screenshot of Cluster Manager Kube-Bench exceptions" lightbox="media/security/nexus-cluster-manager-kubebench.png":::

articles/operator-nexus/media/security/undercloud_kubebench.png renamed to articles/operator-nexus/media/security/nexus-cluster-kubebench.png

File renamed without changes.

articles/operator-nexus/media/security/cm_kubebench.png renamed to articles/operator-nexus/media/security/nexus-cluster-manager-kubebench.png

File renamed without changes.

articles/operator-nexus/media/security/cm_openscap.png renamed to articles/operator-nexus/media/security/nexus-cluster-manager-openscap.png

File renamed without changes.

articles/operator-nexus/media/security/undercloud_openscap.png renamed to articles/operator-nexus/media/security/nexus-cluster-openscap.png

File renamed without changes.

articles/operator-nexus/media/security/naks_kubebench.png renamed to articles/operator-nexus/media/security/nexus-kubernetes-cluster-kubebench.png

File renamed without changes.

articles/operator-nexus/media/security/naks_openscap.png renamed to articles/operator-nexus/media/security/nexus-kubernetes-cluster-openscap.png

File renamed without changes.

0 commit comments

Comments
 (0)