The node that runs Prisma Cloud Compute containers must have sufficient disk space to allocate audit record storage capacity in accordance with organization-defined audit record storage requirements.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-253542 | SRG-APP-000357-CTR-000800 | CNTR-PC-001030 | SV-253542r961392_rule | 2024-12-06 | 2 |
| Description |
|---|
| To ensure sufficient storage capacity in which to write the audit logs, Prisma Cloud compute must be able to allocate audit record storage capacity. |
| ℹ️ Check |
|---|
| When deploying Prisma Cloud Compute within a Kubernetes cluster, the Console's persistent value is by default 100GB. The logs are stored within this persistent volume. Within the Kubernetes cluster, issue the command "kubectl get pv". If the twistlock/twistlock-console claim's capacity is not 100GB or greater, this is a finding. |
| ✔️ Fix |
|---|
| When deploying the Prisma Cloud Console, specify the size of the persistent volume with the "—persistent-volume-storage" parameter. |