Menu
AWS CloudFormation
User Guide (API Version 2010-05-15)

Amazon Elastic Container Service TaskDefinition KernelCapabilities

The KernelCapabilities property type specifies the Linux capabilities to add or drop from the default Docker configuration in an Amazon Elastic Container Service (Amazon ECS) container. For more information, see KernelCapabilities in the Amazon Elastic Container Service API Reference.

KernelCapabilities is a property of the Amazon ECS TaskDefinition LinuxParameters property type.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

Copy
{ "Add" : [ String, ... ], "Drop" : [ String, ... ] }

YAML

Copy
Add: - String Drop: - String

Properties

Add

The Linux capabilities to add to the default Docker configuration. This maps to CapAdd in the Create a container section of the Docker Remote API and the --cap-add option to docker run. For valid values, see KernelCapabilities in the Amazon Elastic Container Service API Reference.

Required: No

Type: List of String values

Update requires: Replacement

Drop

The Linux capabilities to remove from the default Docker configuration. This maps to CapDrop in the Create a container section of the Docker Remote API and the --cap-drop option to docker run. For valid values, see KernelCapabilities in the Amazon Elastic Container Service API Reference.

Required: No

Type: List of String values

Update requires: Replacement

On this page: