Mirantis Secure Registry (MSR) (en)
In this product-focused course, you’ll deep dive into all the features of Mirantis Secure Registry, and discover how it can enhance the security of your container image production, storage and distribution both as a stand-alone registry, or integrated into a continuous integration pipeline. We’ll discuss installing and configuring MSR, managing MSR user permissions, enhancing registry security with content trust and binary security scanning, as well as registry management strategies like garbage collection, content caching, and webhook-driven third-party integrations.
- COD: CN213
- CATEGORY: Mirantis
Who should participate
This course is targeted at students with the following:
Motivations: Leverage all the features of Mirantis Secure Registry in order to enhance the security profile of container image content, distribution and execution.
Roles: System Operators & Administrators
Laboratory requirements
- Laptop with WiFi connectivity
- Participants will need to have the latest version of Chrome or Firefox installed and a free account on strigo.io
Mirantis Secure Registry architecture
Production-grade deployment patterns
Containerized components of MSR
Networking & System requirements for MSR
Installing MSR via Launchpad for high availability
Integrating external storage into MSR
Access control in MSR
MSR RBAC system
Content Trust
Defeating man in the middle attacks with The Update Framework & Notary
Content Trust usage in MSR
Security Scanning
Auditing container images for known vulnerabilities
Setting up MSR security scanning
Security scan integration in continuous integration
Repository Automation
Continuous integration pipeline architecture featuring MSR
Promoting and mirroring images through pipelines
Integrating MSR with external tooling via webhooks
Image Management
Image pruning and garbage collection strategies and automation
Registry sizing strategy
Content caching for distributed teams
MSR Troubleshooting
Correlating MSR symptoms with components
Probing and reading MSR state databases
Recovering failed MSR replicas
MSR backups & restore
Disaster recovery in event of critical MSR failure
Duration – 1 day
Delivery – in Classroom, On Site, Remote
PC and SW requirements:
- Internet connection
- Web browser, Google Chrome
- Zoom
Language
Instructor: English
Workshops: English
Slides: English
Abbiamo preparato un progetto formativo che parte dalle fondamenta di Docker, analizzando attentamente i concetti teorici principali, fino ad arrivare alle varie estensioni che permettono di costruire un ambiente altamente disponibile pronto per i progetti di produzione, tutto questo seguendo attentamente le best-practice che permettono di avere un ambiente sicuro, resiliente e performante dove poter distribuire le proprie applicazioni.
