Using the FedRAMP-provided System Security Plan for Moderate impact systems, Red Hat and Microsoft collaborated on the release of an Azure Blueprint. The document is designed to identify which controls are inherited from Azure’s FedRAMP accreditation, which are satisfied through native Red Hat OpenShift Container Platform capabilities, and which security controls are the responsibility of the system operator (procedural controls).
Microsoft Azure for Government and OpenShift Container Platform architects.
- Specialized Security-Limited Functionality (SSLF)
- Sector-Specific Environment
The reference architecture was last revalidated on OpenShift Container Platform 3.9.
This security guide was developed for FedRAMP Moderate controls.
Inquiries of general use and support should be directed to Red Hat Customer Service (https://access.redhat.com/support/cases/#/case/new).
Named Red Hat POC: Shawn Wells, Chief Security Strategist, Red Hat Public Sector. EMail: firstname.lastname@example.org. Cell: 443-534-0130 (US EST). --
Named Microsoft POC: Harold Wong. EMail: Harold.Wong@microsoft.com.
Updated to FINAL - 9/24/18
NIST checklist record last modified on 10/18/2018