Docker Security Guardrails for Administrators and Developers

description: Identify uncaptured users in your organization. link: /security/for-admins/domain-audit/ icon: person_search - title: Docker Scout description: Explore how Docker Scout can help you create a more secure software supply chain. icon: query_stats link: /scout/ - title: SSO description: Learn how to configure SSO for your company or organization. icon: key link: /security/for-admins/single-sign-on/ - title: SCIM description: Set up SCIM to automatically provision and deprovision users. icon: checklist link: /security/for-admins/provisioning/scim/ - title: Roles and permissions description: Assign roles to individuals giving them different permissions within an organization. icon: badge link: /security/for-admins/roles-and-permissions/ - title: Private marketplace for Extensions (Beta) description: Learn how to configure and set up a private marketplace with a curated list of extensions for your Docker Desktop users. icon: storefront link: /desktop/extensions/private-marketplace/ - title: Organization access tokens description: Create organization access tokens as an alternative to a password. link: /security/for-admins/access-tokens/ icon: password grid_developers: - title: Set up two-factor authentication description: Add an extra layer of authentication to your Docker account. link: /security/for-developers/2fa/ icon: phonelink_lock - title: Manage access tokens description: Create personal access tokens as an alternative to your password. icon: password link: /security/for-developers/access-tokens/ - title: Static vulnerability scanning description: Automatically run a point-in-time scan on your Docker images for vulnerabilities. icon: image_search link: /docker-hub/repos/manage/vulnerability-scanning/ - title: Docker Engine security description: Understand how to keep Docker Engine secure. icon: security link: /engine/security/ - title: Secrets in Docker Compose description: Learn how to use secrets in Docker Compose. icon: privacy_tip link: /compose/how-tos/use-secrets/ grid_resources: - title: Security FAQs description: Explore common security FAQs. icon: help link: /faq/security/general/ - title: Security best practices description: Understand the steps you can take to improve the security of your container. icon: category link: /develop/security-best-practices/ - title: Suppress CVEs with VEX description: Learn how to suppress non-applicable or fixed vulnerabilities found in your images. icon: query_stats link: /scout/guides/vex/ --- Docker provides security guardrails for both administrators and developers. If you're an administrator, you can enforce sign-in across Docker products for your developers, and scale, manage, and secure your instances of Docker Desktop with DevOps security controls like Enhanced Container Isolation and Registry Access Management. For both administrators and developers, Docker provides security-specific products such as Docker Scout, for securing your software supply chain with proactive image vulnerability monitoring and remediation strategies. ## For administrators Explore the security features Docker offers to satisfy your company's security policies. {{< grid items="grid_admins" >}} ## For developers See how you can protect your local environments, infrastructure, and networks without impeding productivity. {{< grid items="grid_developers" >}} ## Further resources {{< grid items="grid_resources" >}}

Docker provides security features for both administrators and developers. Administrators can enforce sign-in, manage Docker Desktop instances with controls like Enhanced Container Isolation and Registry Access Management. Both administrators and developers can use tools like Docker Scout for vulnerability monitoring. The document then lists security features for administrators, developers, and general resources.