Check Docker Hardening Configurations - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide
Product
Cortex XSOAR
Version
8
Creation date
2024-02-14
Last date published
2024-04-25
Category
Administrator Guide
Solution
Cloud
Abstract

Run the !DockerHardeningCheck command to check your docker hardening configurations.

You check your docker hardening configurations on an engine by running the !DockerHardeningCheck command in the CLI. The results show the following:

  • Non-root User

  • Memory

  • File Descriptors

  • CPUs

  • PIDs

Before running the script, ensure that your engine is up and running.

  1. Update the DockerHardeningCheck script to run on the engine.

    Note

    By default, the DockerHardeningCheck script runs on the Cortex XSOAR tenant.

    1. Go to Scripts → DockerHardeningCheck → Settings.

    2. In the Run on field select Single engine and from the drop-down list, select the engine you want to run the script.

    3. Save the script.

  2. Verify the Docker container has been hardened according to recommended settings, in the CLI, run the !DockerHardeningCheck command.

    For example, for successful output:

    docker-hard-config.png

    For unsuccessful output:

    docker-hard-unsuccess.png