You should verify that the Docker server certificate key file (the file that is passed along with the --tlskey parameter) is individually owned and group owned by root.
Recommended Mitigation
You should execute the following command: 'chown root:root '. This sets the individual ownership and group ownership for the Docker server certificate key file to root.