InformationRotate swarm node certificates as appropriate.
Docker Swarm uses mutual TLS for clustering operations amongst its nodes. Certificate rotation ensures that in an event such as compromised node or key, it is difficult to impersonate a node. By default, node certificates are rotated every 90 days. You should rotate it more often or as appropriate in your environment.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
SolutionRun the below command to set the desired expiry time.
docker swarm update --cert-expiry 48h
By default, node certificates are rotated automatically every 90 days.