Securing Docker in shared environments?

d123d · September 23, 2022, 6:27am

Hi Everyone,

I’m an IT admin for an educational institution with not a lot of exposure previously to Docker Desktop for Windows.

We’re looking to provide Docker for classes in our PC training venues, but I’m concerned about the ability for users to download and run their own containers/images for less than legitimate uses circumventing our AV/management policies (e.g. not the first time we’ve found bitcoin mining software running on 100 computers in a room).

I’ve been trying to read through the documentation, but I’m wondering broadly speaking whether there is a way to restrict docker to only run certain images/containers that we choose on our managed PCs?

Thanks in Advance.

meyay · September 23, 2022, 4:59pm

You might want to look at open policy agent:

d123d · September 29, 2022, 1:55am

Thanks for the tip! That looks pretty close to what we’re chasing.
Cheers

Topic	Replies	Views
How to restrict docker images to run on specific host machines and prevent access to underlying code? General	1105	October 19, 2018
Docker CE vs EE Licensing and Docker CE in production General	1475	December 16, 2019
Is there an Enterprise version of Docker Desktop for Windows Docker Desktop	515	February 23, 2019
Docker Virtual Machine General docker	744	July 21, 2016
Docker WIndows Image available? Docker Desktop	872	March 1, 2017

Securing Docker in shared environments?

Related topics