Audit the OpenShift Container Platform in Tenable Vulnerability Management

Tenable offers the ability to audit the Red Hat OpenShift Container Platform environment to detect misconfigurations in the environment using Tenable Vulnerability Management. Complete the following steps to audit the OpenShift Container Platform in Tenable Vulnerability Management:

Before you begin:

To audit the OpenShift Container Platform in Tenable Vulnerability Management:

  1. Log in to your Tenable user interface.

  2. In the upper-left corner, click the button.

    The left navigation plane appears.

  3. In the upper-right corner of the page, click Create a Scan.

    The Select a Scan Template page appears.

  4. Select the Policy Compliance Auditing template.

    The Policy Compliance Auditing page appears.

  1. In the Name box, type a name for the scan.

  2. (Optional) In the Description box, enter information to describe your scan.

  3. In the Targets box, provide the hostname for the RedHat OpenShift Container Platform API.

  4. Click Compliance.

  1. Click OpenShift.

    Tenable offers pre-configured compliance checks and provides the ability to upload a custom OpenShift audit file.

  2. Click each compliance check you want to add to the scan.

  3. If you choose to add a custom audit file, click Add File and select the file to upload.

  4. Click Credentials.

  5. Click OpenShift Container Platform.

  6. In the Token box, add the service account token.

  7. Do one of the following:

    • Click Save.
    • Click the drop-down arrow next to Save and select Launch to initiate the scan.