Skip to content

Docker Enterprise 2.x Linux/UNIX Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Docker Enterprise secret management commands must be used for managing secrets in a Swarm cluster.

    <VulnDiscussion>Use Docker's in-built secret management commands for managing sensitive data that which can be stored in key/value pairs. Exa...
    Rule Medium Severity
  • SRG-APP-000190

    <GroupDescription></GroupDescription>
    Group
  • The Lifetime Minutes and Renewal Threshold Minutes Login Session Controls must be set to 10 and 0 respectively in Docker Enterprise.

    &lt;VulnDiscussion&gt;The Universal Control Plane (UCP) component of Docker Enterprise includes a built-in access authorization mechanism called eN...
    Rule Medium Severity
  • SRG-APP-000231

    <GroupDescription></GroupDescription>
    Group
  • Docker Secrets must be used to store configuration files and small amounts of user-generated data (up to 500 kb in size) in Docker Enterprise.

    &lt;VulnDiscussion&gt;By leveraging Docker Secrets or Kubernetes secrets to store configuration files and small amounts of user-generated data (up ...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules