| CPC G06F 21/577 (2013.01) [G06F 2221/034 (2013.01)] | 20 Claims |
|
1. An Information Handling System (IHS) comprising:
one or more CPUs utilizing one or more buses that connect to a plurality of hardware components of the IHS; and
a remote access controller supporting remote management of the Information Handling System (IHS), the remote access controller comprising a logic unit and a memory device having instructions stored thereon that, upon execution by the logic unit, cause the remote access controller to:
detect launch of a process for onboarding the IHS to a container orchestration platform that comprises vulnerability management service instructions and an onboarding handler component; and
execute the vulnerability management service instructions, which causes the remote controller to:
identify configurations for one or more of the plurality of hardware components of the IHS in the process for onboarding the IHS to the container orchestration platform;
access a plurality of catalogs specifying known vulnerabilities of hardware components;
determine whether any of the one or more of the hardware component configurations in the process for onboarding the IHS to the container orchestration platform are identified as vulnerable in one or more of the catalogs; and
block use of the process for onboarding the IHS to the container orchestration platform by the IHS until the hardware component configurations within the process for onboarding the IHS to the container orchestration platform are modified to include no configurations with vulnerabilities identified in the plurality of catalogs.
|