Security/Host capabilities greyed out

Hi all,

I’m trying to find out why - when adding a service / container in rancher - the capabilities are greyed out on the security/host tab.
My goal is to add a binding to a cifs share on my network to the container.
I’ve found that adding certain CAPs might be a solution. (

Is it due to my hosts kernel?
btw, I’m not using rancher-os but the latest ubuntu with the yet unsupported docker 17.09.0-ce

What I can certainly remark, is that this section is extremely undocumented on rancher’s side.

Privileged implies all the capabilities are enabled.