Workload misconfigurations

Ensure TLS authentication for Docker daemon is configured (Automated)

Risk Level

Informational (4)

Platform(s)
  • N/A

Description

It is possible to make the Docker daemon available remotely over a TCP port. If this is required, you should ensure that TLS authentication is configured in order to restrict access to the Docker daemon via IP address and port.
  • Recommended Mitigation

    Review the dockerd startup options and the content of /etc/docker/daemon.json.