Carbon Black Container - Docker Agent
Overview
Run the Carbon Black Containerized Sensor Agent on your host with Docker client to detect and enforce Endpoint Detection and Response (EDR) and Container Scanning capabilities.
Use Cases
- Run the Carbon Black Cloud Linux Sensor on your host and host containers.
- Detect vulnerabilities, malware and secrets on the runtime, in your Docker containers.
Requirements
- Linux Host with docker installed
- Carbon Black Cloud Container
- API key with appropriate permissions. See Authentication for details
Installation
- Fill the environment variables you received from the setup wizard at this
docker-compose.yamlfile:
version: "3.3"
services:
cb-containers-sensor:
pid: host
network_mode: host
image: docker.io/cbartifactory/cb-containers-sensor:{sensor-version}
privileged: true
environment:
# fill environment variables here
volumes:
- /var/run/docker.sock:/var/run/docker.sock:ro
- /boot:/boot
- /var/opt/carbonblack:/var/opt/carbonblack
- /etc/os-release:/etc/os-release
- /:/var/opt/root
- /etc/hostname:/etc/hostname
- Deploy the agent container by running:
docker-compose up -d
Last modified on November 22, 2023