Run the !DockerHardeningCheck command to check your docker hardening configurations.
You check your docker hardening configurations on an engine by running the !DockerHardeningCheck
command in the CLI. The results show the following:
Non-root User
Memory
File Descriptors
CPUs
PIDs
Before running the script, ensure that your engine is up and running.
Update the
DockerHardeningCheck
script to run on the engine.Note
By default, the
DockerHardeningCheck
script runs on the Cortex XSOAR tenant.Go to
→ → .In the Run on field select Single engine and from the drop-down list, select the engine you want to run the script.
Save the script.
Verify the Docker container has been hardened according to recommended settings, in the CLI, run the
!DockerHardeningCheck
command.For example, for successful output:
For unsuccessful output: