Audit the OpenShift Container Platform in Nessus
Tenable offers the ability to audit the Red Hat OpenShift Container Platform environment to detect misconfigurations in the environment using Tenable Nessus. Complete the following steps to audit the OpenShift Container Platform in Tenable Nessus:
Before you begin:
-
Configure the OpenShift Container Platform as described in Configure RedHat OpenShift Container Platform for a Compliance Audit.
To audit the OpenShift Container Platform in Tenable Nessus:
- Log in to Tenable Nessus.
- In the top navigation plane, click Scans.
The Scans page appears.
-
In the upper-right corner of the page, click New Scan.
The Select a Scan Template page appears.
-
Select the Policy Compliance Auditing template.
The Policy Compliance Auditing page appears.
-
In the Name box, type a name for the scan.
- (Optional) In the Description box, enter information to describe your scan.
-
In the Targets box, provide the hostname for the RedHat OpenShift Container Platform API.
-
Click Compliance.
-
Click OpenShift from the Categories drop-down.
Tenable offers pre-configured compliance checks and provides the ability to upload a custom OpenShift audit file.
-
Click each compliance check you want to add to the scan.
-
If you choose to add a custom audit file, click Add File and select the file to upload.
-
Click Credentials.
-
Click OpenShift Container Platform.
-
In the Token box, add the service account token.
-
Do one of the following:
- Click Save.
- Click the drop-down arrow next to Save and select Launch to initiate the scan.