Back to All Checks
High ECS Regional

ECS containers should run as non-privileged

NIST

Description

Checks if the privileged parameter in the container definition of Amazon ECS Task Definitions is set to true. The control fails if this parameter is equal to true.

Remediation

To configure the privileged parameter on a task definition, update the task definition to set 'privileged' to false for each container definition.

Steps

  1. Open the Amazon ECS console.
  2. Navigate to the 'Task Definitions' tab.
  3. Select the task definition to update.
  4. Edit each container definition and ensure 'privileged' is set to false.
  5. Update the task definition.

Compliance

NIST
Start Your Free Security Check