Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Create a separate partition for containersCIS Docker 1.11.0 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Create a separate partition for containersCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1.1 Ensure a separate partition for containers has been createdCIS Docker v1.5.0 L1 Linux Host OSUnix
1.2.1 Ensure a separate partition for containers has been createdCIS Docker v1.2.0 L1 Linux Host OSUnix

CONFIGURATION MANAGEMENT

1.2.5 Ensure auditing is configured for Docker files and directories - /etc/dockerCIS Docker v1.2.0 L1 Linux Host OSUnix

AUDIT AND ACCOUNTABILITY

1.7 Audit Docker files and directories - /etc/dockerCIS Docker 1.13.0 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

1.7 Ensure auditing is configured for Docker files and directories - /etc/dockerCIS Docker Community Edition v1.1.0 L1 Linux Host OSUnix

AUDIT AND ACCOUNTABILITY

1.10 Audit Docker files and directories - /etc/dockerCIS Docker 1.6 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

1.10 Ensure auditing is configured for Docker files and directories - /etc/default/dockerCIS Docker Community Edition v1.1.0 L1 Linux Host OSUnix

AUDIT AND ACCOUNTABILITY

1.12 Audit Docker files and directories - /etc/default/dockerCIS Docker 1.11.0 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

1.12 Audit Docker files and directories - /usr/bin/docker-containerdCIS Docker 1.13.0 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

1.13 Ensure auditing is configured for Docker files and directories - /usr/bin/docker-runcCIS Docker Community Edition v1.1.0 L1 Linux Host OSUnix

AUDIT AND ACCOUNTABILITY

1.14 Audit Docker files and directories - /usr/bin/docker-containerdCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

1.15 Audit Docker files and directories - /usr/bin/docker-runcCIS Docker 1.11.0 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

2.6 Configure TLS authentication for Docker daemon - tlscacertCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.6 Configure TLS authentication for Docker daemon - tlscertCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.6 Configure TLS authentication for Docker daemon - tlskeyCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.6 Configure TLS authentication for Docker daemon --tlscertCIS Docker 1.13.0 v1.0.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.6 Configure TLS authentication for Docker daemon -tlsverifyCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.6 Configure TLS authentication for Docker daemon -tlsverifyCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.6 Ensure TLS authentication for Docker daemon is configured --tlscertCIS Docker Community Edition v1.1.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.7 Ensure TLS authentication for Docker daemon is configured - tlscertCIS Docker v1.6.0 L1 Docker LinuxUnix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

2.7 Ensure TLS authentication for Docker daemon is configured - tlscertCIS Docker v1.3.1 L1 Docker LinuxUnix
2.7 Ensure TLS authentication for Docker daemon is configured - tlscertCIS Docker v1.5.0 L1 Docker LinuxUnix
2.7 Ensure TLS authentication for Docker daemon is configured - tlsverifyCIS Docker v1.6.0 L1 Docker LinuxUnix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

2.7 Ensure TLS authentication for Docker daemon is configured - tlsverifyCIS Docker v1.3.1 L1 Docker LinuxUnix
2.11 Use authorization pluginCIS Docker 1.13.0 v1.0.0 L2 DockerUnix

IDENTIFICATION AND AUTHENTICATION

2.12 Ensure that authorization for Docker client commands is enabledCIS Docker v1.5.0 L2 Docker LinuxUnix
3.7 Verify that Docker environment file ownership is set to root:rootCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.15 Ensure that Docker socket file ownership is set to root:dockerCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.15 Ensure that the Docker socket file ownership is set to root:dockerCIS Docker v1.2.0 L1 Docker LinuxUnix

CONFIGURATION MANAGEMENT

3.15 Ensure that the Docker socket file ownership is set to root:dockerCIS Docker v1.6.0 L2 Docker LinuxUnix

ACCESS CONTROL, MEDIA PROTECTION

3.15 Verify that Docker socket file ownership is set to root:dockerCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.15 Verify that Docker socket file ownership is set to root:dockerCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.15 Verify that Docker socket file ownership is set to root:dockerCIS Docker 1.13.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

4.1 Create a user for the containerCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

ACCESS CONTROL

4.1 Create a user for the containerCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

ACCESS CONTROL

4.1 Create a user for the containerCIS Docker 1.6 v1.0.0 L1 DockerUnix
4.2 Use trusted base images for containersCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

4.2 Use trusted base images for containersCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

DKER-EE-001090 - The host operating systems auditing policies for the Docker Engine - Enterprise component of Docker Enterprise must be set - docker pathsDISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

DKER-EE-001090 - The host operating systems auditing policies for the Docker Engine - Enterprise component of Docker Enterprise must be set - docker servicesDISA STIG Docker Enterprise 2.x Linux/Unix v2r1Unix

AUDIT AND ACCOUNTABILITY

DKER-EE-001090 - The host operating systems auditing policies for the Docker Engine - Enterprise component of Docker Enterprise must be set - docker servicesDISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

DKER-EE-001090 - The host operating systems auditing policies for the Docker Engine - Enterprise component of Docker Enterprise must be set. - docker servicesDISA STIG Docker Enterprise 2.x Linux/Unix v1r1Unix

AUDIT AND ACCOUNTABILITY

DKER-EE-001770 - Docker Incs official GPG key must be added to the host using the users operating systems respective package repository management tooling.DISA STIG Docker Enterprise 2.x Linux/Unix v1r1Unix

CONFIGURATION MANAGEMENT

DKER-EE-003590 - Content Trust enforcement must be enabled in Universal Control Plane (UCP) in Docker Enterprise.DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r2Unix

CONFIGURATION MANAGEMENT

DKER-EE-004130 - Docker Enterprise older Universal Control Plane (UCP) and Docker Trusted Registry (DTR) images must be removed from all cluster nodes upon upgrading.DISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

SYSTEM AND INFORMATION INTEGRITY

DKER-EE-004130 - Docker Enterprise older Universal Control Plane (UCP) and Docker Trusted Registry (DTR) images must be removed from all cluster nodes upon upgrading.DISA STIG Docker Enterprise 2.x Linux/Unix v1r1Unix

SYSTEM AND INFORMATION INTEGRITY

DKER-EE-004130 - Docker Enterprise older Universal Control Plane (UCP) and Docker Trusted Registry (DTR) images must be removed from all cluster nodes upon upgrading.DISA STIG Docker Enterprise 2.x Linux/Unix v2r1Unix

SYSTEM AND INFORMATION INTEGRITY

DKER-EE-005310 - Docker Enterprise socket file ownership must be set to root:docker.DISA STIG Docker Enterprise 2.x Linux/Unix v1r1Unix

CONFIGURATION MANAGEMENT