Securing Swarm cluster
Recall the picture of a secured Swarm cluster from Chapter 4, Creating a Production-Grade Swarm; we'll explain the security aspects found in a Docker Swarm model cluster.
We have the Orchestrator as one of the main parts of a Docker Swarm manager. Diogo Monica, a member of the Docker Security team, mentioned in his Orchestration Least Privileged presentation, in Berlin 2016, that each component in the orchestration must have a limitation of what it can do.
- Node management: A cluster operator may instruct an Orchestrator to perform actions for a set of nodes
- Task assignment: The Orchestrator is also responsible for assigning tasks ...
Get Native Docker Clustering with Swarm now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
