diff --git a/docker-apparmor.sh b/docker-apparmor.sh
new file mode 100644
index 0000000..086509f
--- /dev/null
+++ b/docker-apparmor.sh
@@ -0,0 +1,18 @@
+#!/bin/bash
+
+#
+# REF: https://github.com/docker/docs/pull/19638/files
+#
+
+$ cat <<EOF > /etc/apparmor.d/$(echo $HOME/bin/rootlesskit | sed -e s@^/@@ -e s@/@.@g)
+abi <abi/4.0>,
+include <tunables/global>
+
+$HOME/bin/rootlesskit flags=(unconfined) {
+userns,
+
+include if exists <local/$(echo $HOME/bin/rootlesskit | sed -e s@^/@@ -e s@/@.@g)>
+}
+EOF
+
+$ systemctl restart apparmor.service