CN213: Mirantis Secure Registry (MSR)
This course teaches you about Mirantis Secure Registry and how it improves container image security. You will learn to install and configure the registry, manage user permissions, and enhance security through content trust and binary security scanning. You will also gain insights into registry management strategies like garbage collection, content caching, and webhook-driven third-party integrations.
per person
Level
Duration
Training Delivery Format
Face-to-face / Virtual Class
per person
Level
Duration
Training Delivery Format
Face-to-face (F2F) / Virtual Class
Class types
Public Class
Private Class
In-House Training
Bespoke
About this course
This course is designed to help you become an expert in Mirantis Secure Registry. You will learn about all the features of the registry and how it can enhance the security of your container image production, storage, and distribution. You will gain practical knowledge on installing and configuring the registry, managing user permissions, and improving security through content trust and binary security scanning.
Additionally, you will learn about registry management strategies like garbage collection, content caching, and webhook-driven third-party integrations. By the end of the course, you will be able to confidently use the registry as a stand-alone registry or integrate it into your continuous integration pipeline to improve the security of your container images.
Who should attend?
This course is targeted at students with the following:
- Motivations: Leverage all the features of Mirantis Secure Registry in order to enhance the security profile of container image content, distribution and execution.
- Roles: System Operators & Administrators
Prerequisites
- CN212 course and prerequisites therein, or equivalent experience
- Familiarity with the Bash shell
- Filesystem navigation and manipulation
- Command line text editors like vim or nano
- Common tooling like curl, wget and ping
- Familiarity with YAML and JSON notation
Course Content
Mirantis Secure Registry architecture
- Production-grade deployment patterns
- Containerized components of MSR
- Networking & System requirements for MSR
- Installing MSR via Launchpad for high availability
- Integrating external storage into MSR
Access control in MSR
- MSR RBAC system
Content Trust
- Defeating man in the middle attacks with The Update Framework & Notary
- Content Trust usage in MSR
Security Scanning
- Auditing container images for known vulnerabilities
- Setting up MSR security scanning
- Security scan integration in continuous integration
Repository Automation
- Continuous integration pipeline architecture featuring MSR
- Promoting and mirroring images through pipelines
- Integrating MSR with external tooling via webhooks
Image Management
- Image pruning and garbage collection strategies and automation
- Registry sizing strategy
- Content caching for distributed teams
MSR Troubleshooting
- Correlating MSR symptoms with components
- Probing and reading MSR state databases
- Recovering failed MSR replicas
- MSR backups & restore
- Disaster recovery in event of critical MSR failure

At this time, this course is available for private class and in-house training only. Please contact us for any inquiries.