Docker Enterprise 2.x Linux/UNIX Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Only trusted, signed images must be on Universal Control Plane (UCP) in Docker Enterprise.
<VulnDiscussion>The UCP and Docker Trusted Registry (DTR) components of Docker Enterprise can be used in concert to perform an integrity chec...Rule Medium Severity -
SRG-APP-000414
<GroupDescription></GroupDescription>Group -
Vulnerability scanning must be enabled for all repositories in the Docker Trusted Registry (DTR) component of Docker Enterprise.
<VulnDiscussion>DTR can scan Docker images for vulnerabilities and this capability should be enabled to meet the requirements of this control...Rule Medium Severity -
SRG-APP-000427
<GroupDescription></GroupDescription>Group -
Universal Control Plane (UCP) must be integrated with a trusted certificate authority (CA) in Docker Enterprise.
<VulnDiscussion>Both the UCP and Docker Trusted Registry (DTR) components of Docker Enterprise leverage the same authentication and authoriza...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules