As a DevOps engineer,

I want Red Hat Advanced Cluster Security (RHACS) to provide visibility and policy enforcement for Windows containers running on my OpenShift clusters,

so that I can have consistent security monitoring and governance across my entire containerized environment, regardless of the underlying operating system.

Acceptance Criteria:

• RHACS can discover and inventory Windows containers running within OpenShift.
• RHACS displays relevant metadata for Windows containers, such as image details, resource usage, and network information, within its central dashboard.
• Users can define and apply security policies that are relevant to Windows containers (e.g., image registry restrictions, resource limits).
• RHACS can generate alerts and identify violations of these policies in Windows containers.
• The existing RHACS vulnerability scanning capabilities are extended to analyze Windows container images for known vulnerabilities.
• RHACS provides visibility into the network traffic of Windows containers and allows for the enforcement of network policies.
• The user experience for managing Windows containers within the RHACS interface is consistent with the experience for Linux containers.
• Clear documentation is provided on how to deploy and manage Windows containers with RHACS.

Notes:

• This feature will initially focus on core security visibility and policy enforcement capabilities for Windows containers. More advanced features may be considered in future iterations.
• Integration with Windows-specific security features and best practices will be explored.
• Performance considerations for scanning and monitoring Windows containers will be addressed during development.