About Me

DevOps@RajeshKumar.XYZ

Cass

Containers as a Service

Getting Started with Docker

Tour of Universal Control Plane

Tour of Docker Trusted Registry

Docker Datacenter Install

• Part 1

• Docker CS Engine

• Universal Control Plane

Docker Datacenter Install

• Part 2

• Docker Trusted Registry

	curl -slf http://pacakages.docker.com/1.12/install .sh | sh
	

Install Docker CS Engine

	docker run --rm -it --name ucp\
	-v /var/run/docker.sock:/var/run/docker .sock \
	docker/ucp:2.0 install \
	--san my-up.azure.com
	

Install Universal Control Plane

	docker swarm join \
	--token SWMTKN-1-412tc3cz88h0tgsmtpsh6q256...\
	10.0.0.4:2377
	

Add Nodes to DDC

	docker run -it --rm docker/dtr install \
		--dtr-external-url http://my-dtr.azure.com \
		--ucp-node ddc -dtr1 \
		--ucp-insecure-tls \
		--ucp-url http://my-ucp.azure.com \
		--ucp-username admin
	

Install Docker Trusted Registry

		curl -k http://my-dtr.azure.com/ca/ \
		-ol /usr/local/share/certificate/my-dtr.azure.com.crt
		sudo update-certificates
		sudo service docker restart
	

Allow Self-Signed SSL Certificate

Managing Images with Docker Trusted Registry

• Pushing and pulling images

• Rinning DTR images in UCP

• Signing images with Content Trust

Managing Images with Docker Trusted Registry

	latest: Pulling from library/ubuntu
	af49a5ceb2a5: Pull complete
	8f9757b472e7: Pull complete
	e931b117db38: Pull complete
	Digest: sha256:3b64c309deae7ab0f7dbdd42b6b326261ccd6261d...
					

Image Layers

Productionizing DTR

• Configuring shared storage

• Adding replica nodes

	dockerrun -it --rmdocker/dtrjoin \
	--ucp-urlhttps://my-ucp.azure.com \
	--ucp-node ddc-dtr-2 \
	--existing-replica-id 395560f691f8 \
	--ucp-username ddcadmin\
	--ucp-ca "$(cat ucp-ca.pem)"
					

Add DTR Replica Node

	dockerrun -it --rmdocker/dtrbackup \
	--ucp-urlhttps://my-ucp.azure.com \
	--existing-replica-id 395560f691f8 \
	--ucp-username ddcadmin\
	--ucp-ca "$(cat ucp-ca.pem)" > backup.tar
					

Backup DTR Database

	dockerrun -it --rmdocker/dtrrestore \
	--dtr-external-urlhttps://my-dtr.azure.com \
	--ucp-node ddc-dtr3 \
	--ucp-insecure-tls\
	--ucp-urlhttps://my-ucp.azure.com \
	--ucp-username admin < backup.tar
					

Restore DTR Database

Using Docker Trusted Registry

• Pushing and pulling images

• Running UCP services from DTR images

	> dockerbuild -t my-ucp.azure.com/elton/docker-demo .
					

Building an Image for DTR

	> dockerlogin my-ucp.azure.com
	Username: elton
	Password:
	Login Succeeded
	> dockerpush my-ucp.azure.com/elton/docker-demo
					

Pushing Images to User Repositories

Using Organizations in DTR

• Creating organizations and repositories

• Managing teams and users

• Configuring team repository access

Docker Content Trust

Configuring a DTR repository in Notary

Docker Content Trust

• Signing Docker images

• Requiring trusted images in UCP

Administering Docker with Universal Control Plane

• Running and scaling services

• Running distributed applications

• Managing node maintenance

Administering Docker with Universal Control Plane

Productionizing UCP

• Adding controller nodes

• Configuring Universal Control Plane

	dockerswarm join \
	--token SWMTKN-1-4l2tc3cz88h0tefygewytufgv6q256... \
	10.0.0.4:2377
					

Add UCP Controller Node

Running Services in UCP

• Creating a service from a DTR image

• Scaling up the service

Running Applications in UCP

• Deploying from Docker Compose

• Managing application containers

Scale and Resilience in UCP

• Adding worker nodes

• Scaling services

• Removing worker nodes

Questions

Thank You