diff --git a/pkg/kubelet/lifecycle/handlers.go b/pkg/kubelet/lifecycle/handlers.go
index 8d606796ae7..450c985e2a4 100644
--- a/pkg/kubelet/lifecycle/handlers.go
+++ b/pkg/kubelet/lifecycle/handlers.go
@@ -187,45 +187,34 @@ func (a *noNewPrivsAdmitHandler) Admit(attrs *PodAdmitAttributes) PodAdmitResult
 		return PodAdmitResult{Admit: true}
 	}
 
-	// Always admit for remote runtime.
-	if a.Runtime.Type() == kubetypes.RemoteContainerRuntime {
+	// Always admit runtimes except docker.
+	if a.Runtime.Type() != kubetypes.DockerContainerRuntime {
 		return PodAdmitResult{Admit: true}
 	}
 
-	// Make sure it is either docker or rkt runtimes.
-	if a.Runtime.Type() != kubetypes.DockerContainerRuntime && a.Runtime.Type() != kubetypes.RktContainerRuntime {
+	// Make sure docker api version is valid.
+	rversion, err := a.Runtime.APIVersion()
+	if err != nil {
 		return PodAdmitResult{
 			Admit:   false,
 			Reason:  "NoNewPrivs",
-			Message: fmt.Sprintf("Cannot enforce NoNewPrivs: %s runtime not supported", a.Runtime.Type()),
+			Message: fmt.Sprintf("Cannot enforce NoNewPrivs: %v", err),
 		}
 	}
-
-	if a.Runtime.Type() == kubetypes.DockerContainerRuntime {
-		// Make sure docker api version is valid.
-		rversion, err := a.Runtime.APIVersion()
-		if err != nil {
-			return PodAdmitResult{
-				Admit:   false,
-				Reason:  "NoNewPrivs",
-				Message: fmt.Sprintf("Cannot enforce NoNewPrivs: %v", err),
-			}
+	v, err := rversion.Compare("1.23.0")
+	if err != nil {
+		return PodAdmitResult{
+			Admit:   false,
+			Reason:  "NoNewPrivs",
+			Message: fmt.Sprintf("Cannot enforce NoNewPrivs: %v", err),
 		}
-		v, err := rversion.Compare("1.23.0")
-		if err != nil {
-			return PodAdmitResult{
-				Admit:   false,
-				Reason:  "NoNewPrivs",
-				Message: fmt.Sprintf("Cannot enforce NoNewPrivs: %v", err),
-			}
-		}
-		// If the version is less than 1.23 it will return -1 above.
-		if v == -1 {
-			return PodAdmitResult{
-				Admit:   false,
-				Reason:  "NoNewPrivs",
-				Message: fmt.Sprintf("Cannot enforce NoNewPrivs: docker runtime API version %q must be greater than or equal to 1.23", rversion.String()),
-			}
+	}
+	// If the version is less than 1.23 it will return -1 above.
+	if v == -1 {
+		return PodAdmitResult{
+			Admit:   false,
+			Reason:  "NoNewPrivs",
+			Message: fmt.Sprintf("Cannot enforce NoNewPrivs: docker runtime API version %q must be greater than or equal to 1.23", rversion.String()),
 		}
 	}