Docker启用TLS实现安全配置的步骤-创新互联

前言

创新互联建站专注于平利企业网站建设,响应式网站建设,商城网站定制开发。平利网站建设公司,为平利等地区提供建站服务。全流程定制网站制作,专业设计,全程项目跟踪,创新互联建站专业和态度为您提供的服务

之前开启了docker的2375 Remote API,接到公司安全部门的要求,需要启用授权,翻了下官方文档

Protect the Docker daemon socket

启用TLS


在docker服务器,生成CA私有和公共密钥

$ openssl genrsa -aes256 -out ca-key.pem 4096
Generating RSA private key, 4096 bit long modulus
............................................................................................................................................................................................++
........++
e is 65537 (0x10001)
Enter pass phrase for ca-key.pem:
Verifying - Enter pass phrase for ca-key.pem:

$ openssl req -new -x509 -days 365 -key ca-key.pem -sha256 -out ca.pem
Enter pass phrase for ca-key.pem:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:
State or Province Name (full name) [Some-State]:Queensland
Locality Name (eg, city) []:Brisbane
Organization Name (eg, company) [Internet Widgits Pty Ltd]:Docker Inc
Organizational Unit Name (eg, section) []:Sales
Common Name (e.g. server FQDN or YOUR name) []:$HOST
Email Address []:Sven@home.org.au

名称栏目:Docker启用TLS实现安全配置的步骤-创新互联
文章URL:http://bzwzjz.com/article/jscsj.html

其他资讯

Copyright © 2007-2020 广东宝晨空调科技有限公司 All Rights Reserved 粤ICP备2022107769号
友情链接: 定制网站制作 网站设计 成都网站制作 品牌网站建设 成都企业网站设计 成都网站建设 营销网站建设 网站设计公司 成都网站设计 成都网站设计 网站制作 上市集团网站建设 重庆外贸网站建设 成都响应式网站建设 成都定制网站建设 成都网站建设 网站建设方案 响应式网站设计 手机网站制作 定制网站设计 成都网站建设 成都网站制作公司