Item Search

Name	Audit Name	Plugin	Category
1.7 Audit Docker files and directories - /etc/docker	CIS Docker 1.13.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.7 Only allow trusted users to control Docker daemon	CIS Docker 1.6 v1.0.0 L1 Linux	Unix	ACCESS CONTROL
1.10 Audit Docker files and directories - /etc/default/docker	CIS Docker 1.13.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.10 Audit Docker files and directories - /etc/docker	CIS Docker 1.6 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.10 Ensure auditing is configured for Docker files and directories - /etc/default/docker	CIS Docker Community Edition v1.1.0 L1 Linux Host OS	Unix	AUDIT AND ACCOUNTABILITY
1.11 Audit Docker files and directories - /etc/docker/daemon.json	CIS Docker 1.13.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.11 Ensure auditing is configured for Docker files and directories - /etc/docker/daemon.json	CIS Docker Community Edition v1.1.0 L1 Linux Host OS	Unix	AUDIT AND ACCOUNTABILITY
1.12 Audit Docker files and directories - /usr/bin/docker-containerd	CIS Docker 1.13.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.12 Ensure auditing is configured for Docker files and directories - /usr/bin/docker-containerd	CIS Docker Community Edition v1.1.0 L1 Linux Host OS	Unix	AUDIT AND ACCOUNTABILITY
1.13 Audit Docker files and directories - /usr/bin/docker-runc	CIS Docker 1.13.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.13 Ensure auditing is configured for Docker files and directories - /usr/bin/docker-runc	CIS Docker Community Edition v1.1.0 L1 Linux Host OS	Unix	AUDIT AND ACCOUNTABILITY
1.14 Audit Docker files and directories - /usr/bin/docker-containerd	CIS Docker 1.12.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.15 Audit Docker files and directories - /usr/bin/docker-runc	CIS Docker 1.11.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.15 Audit Docker files and directories - /usr/bin/docker-runc	CIS Docker 1.12.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.17 Audit Docker files and directories - /etc/sysconfig/docker-storage	CIS Docker 1.6 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.18 Audit Docker files and directories - /etc/default/docker	CIS Docker 1.6 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
2.6 Configure TLS authentication for Docker daemon - tlscacert	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Configure TLS authentication for Docker daemon - tlscacert	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Configure TLS authentication for Docker daemon - tlscert	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Configure TLS authentication for Docker daemon - tlscert	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Configure TLS authentication for Docker daemon - tlskey	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Configure TLS authentication for Docker daemon - tlskey	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Configure TLS authentication for Docker daemon --tlsverify	CIS Docker 1.13.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Configure TLS authentication for Docker daemon -tlsverify	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Configure TLS authentication for Docker daemon -tlsverify	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.7 Ensure TLS authentication for Docker daemon is configured - tlscert	CIS Docker v1.6.0 L1 Docker Linux	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.7 Ensure TLS authentication for Docker daemon is configured - tlskey	CIS Docker v1.6.0 L1 Docker Linux	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.7 Ensure TLS authentication for Docker daemon is configured - tlsverify	CIS Docker v1.6.0 L1 Docker Linux	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.9 Configure TLS authentication for Docker daemon '--tlscacert'	CIS Docker 1.6 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.9 Configure TLS authentication for Docker daemon '--tlscert'	CIS Docker 1.6 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.9 Configure TLS authentication for Docker daemon '--tlskey''	CIS Docker 1.6 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.9 Configure TLS authentication for Docker daemon '--tlsverify'	CIS Docker 1.6 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.11 Use authorization plugin	CIS Docker 1.13.0 v1.0.0 L2 Docker	Unix	IDENTIFICATION AND AUTHENTICATION
2.12 Ensure that authorization for Docker client commands is enabled	CIS Docker v1.6.0 L2 Docker Linux	Unix	ACCESS CONTROL
2.14 Enable live restore	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4 Verify that docker-registry.service file permissions are set to 644 or more restrictive	CIS Docker 1.6 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.15 Ensure that Docker socket file ownership is set to root:docker	CIS Docker Community Edition v1.1.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.15 Ensure that the Docker socket file ownership is set to root:docker	CIS Docker v1.6.0 L2 Docker Linux	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.15 Ensure that the Docker socket file ownership is set to root:docker	CIS Docker v1.6.0 L1 Docker Linux	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.15 Verify that Docker socket file ownership is set to root:docker	CIS Docker 1.13.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.25 Verify that Docker socket file ownership is set to root:docker - /var/run/docker.sock	CIS Docker 1.6 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
4.1 Create a user for the container	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	ACCESS CONTROL
4.1 Create a user for the container	CIS Docker 1.6 v1.0.0 L1 Docker	Unix
4.1 Create a user for the container	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	ACCESS CONTROL
4.1 Create CIS Audit Class	CIS Solaris 11.2 L1 v1.1.0	Unix	ACCESS CONTROL
4.2 Use trusted base images for containers	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
4.2 Use trusted base images for containers	CIS Docker 1.6 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
DKER-EE-003590 - Content Trust enforcement must be enabled in Universal Control Plane (UCP) in Docker Enterprise.	DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-004130 - Docker Enterprise older Universal Control Plane (UCP) and Docker Trusted Registry (DTR) images must be removed from all cluster nodes upon upgrading.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	SYSTEM AND INFORMATION INTEGRITY
DKER-EE-005310 - Docker Enterprise socket file ownership must be set to root:docker.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search