1. Background

Weak settings incidents indicate that a well-known service is running with a non-optimal configuration.

2. Investigation

While weak settings incidents are not likely to represent a security incident, they do represent the potential for an incident.

weak settings incident

Checking the compliance report for this container will tell you more. In Console, go to Monitor > Compliance > Containers, then click on the container that triggered the incident to open the scan report.

weak settings compliance

You should also review other audit and log data associated with this container to ensure that the weak configuration has not been exploited.

3. Mitigation

Review and implement the best practices for the reported service.