Detections
Analytics

CIS Docker v1.6.0 L1 Docker Swarm

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Docker v1.6.0 L1 Docker Swarm

Updated: 12/3/2024

Authority: CIS

Plugin: Unix

Revision: 1.2

Estimated Item Count: 10

Audit Items

DescriptionCategories
7.1 Ensure that the minimum number of manager nodes have been created in a swarm
7.2 Ensure that swarm services are bound to a specific host interface
7.3 Ensure that all Docker swarm overlay networks are encrypted
7.4 Ensure that Docker's secret management commands are used for managing secrets in a swarm cluster
7.5 Ensure that swarm manager is run in auto-lock mode
7.6 Ensure that the swarm manager auto-lock key is rotated periodically
7.7 Ensure that node certificates are rotated as appropriate
7.8 Ensure that CA certificates are rotated as appropriate
7.9 Ensure that management plane traffic is separated from data plane traffic
CIS_Docker_v1.6.0_L1_Docker_Swarm.audit from CIS Docker Benchmark v1.6.0