Mirantis Secure Registry (MSR)

In this product-focused course, you’ll deep dive into all the features of Mirantis Secure Registry, and discover how it can enhance the security of your container image production, storage and distribution both as a stand-alone registry, or integrated into a continuous integration pipeline. We’ll discuss installing and configuring MSR, managing MSR user permissions, enhancing registry security with content trust and binary security scanning, as well as registry management strategies like garbage collection, content caching, and webhook-driven third-party integrations.

Objetivos

Contenedores

Disponible en formato e-learning

Disponible en formato presencial

Disponible en formato a distancia

Subvención disponible
A través de Fundae, cumpliendo requisitos.

Duración
5 horas

  • Dificultad 50% 50%
  • Nivel alcanzado 80% 80%

Dirigido a

This course is targeted at students with the following:

Motivations: Leverage all the features of Mirantis Secure Registry in order to enhance the security profile of container image content, distribution and execution.

Roles: System Operators & Administrators

Conocimientos requeridos

Familiarity with the Bash shell
Filesystem navigation and manipulation
Command line text editors like vim or nano
Common tooling like curl, wget and ping
Familiarity with YAML and JSON notation
Pre-requisitos:
CN212 – Mirantis Kubernetes Engine (MKE)

Temario

Mirantis Secure Registry architecture
Production-grade deployment patterns
Containerized components of MSR
Networking & System requirements for MSR
Installing MSR via Launchpad for high availability
Integrating external storage into MSR
Access control in MSR
MSR RBAC system
Content Trust
Defeating man in the middle attacks with The Update Framework & Notary
Content Trust usage in MSR
Security Scanning
Auditing container images for known vulnerabilities
Setting up MSR security scanning
Security scan integration in continuous integration
Repository Automation
Continuous integration pipeline architecture featuring MSR
Promoting and mirroring images through pipelines
Integrating MSR with external tooling via webhooks
Image Management
Image pruning and garbage collection strategies and automation
Registry sizing strategy
Content caching for distributed teams
MSR Troubleshooting
Correlating MSR symptoms with components
Probing and reading MSR state databases
Recovering failed MSR replicas
MSR backups & restore
Disaster recovery in event of critical MSR failure

Solicita información del curso