Workload misconfigurations

Ensure that TLS CA certificate file ownership is set to root:root (Automated)

Platform(s)
Compliance Frameworks
  • Docker CIS V1.3.1
  • ,
  • mpa
  • ,
  • New Zealand Information Security Manual
  • ,
  • NIST 800-190

Description

You should verify that the TLS CA certificate file (the file that is passed along with the -- tlscacert parameter) is individually owned and group owned by root.