CIS Docker v1.8.0 L1 Docker Swarm

Audit Details

Name: CIS Docker v1.8.0 L1 Docker Swarm

Updated: 9/24/2025

Authority: CIS

Plugin: Unix

Revision: 1.0

Estimated Item Count: 10

File Details

Filename: CIS_Docker_v1.8.0_L1_Docker_Swarm.audit

Size: 19.8 kB

MD5: 7ab5ae6a0d5d7e31c300793f7355cb5a
SHA256: 6a597fa3bc87e33f826c6c67d0d93d7c6930c1088b98e3d4e08f37a37a2c9b38

Audit Items

DescriptionCategories
7.1 Ensure that the minimum number of manager nodes have been created in a swarm

CONFIGURATION MANAGEMENT

7.2 Ensure that swarm services are bound to a specific host interface

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

7.3 Ensure that all Docker swarm overlay networks are encrypted

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

7.4 Ensure that Docker's secret management commands are used for managing secrets in a swarm cluster

CONFIGURATION MANAGEMENT

7.5 Ensure that swarm manager is run in auto-lock mode

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

7.6 Ensure that the swarm manager auto-lock key is rotated periodically

IDENTIFICATION AND AUTHENTICATION

7.7 Ensure that node certificates are rotated as appropriate

IDENTIFICATION AND AUTHENTICATION

7.8 Ensure that CA certificates are rotated as appropriate

IDENTIFICATION AND AUTHENTICATION

7.9 Ensure that management plane traffic is separated from data plane traffic

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

CIS_Docker_v1.8.0_L1_Docker_Swarm.audit from CIS Docker Benchmark v1.8.0