Please enable JavaScript.
Coggle requires JavaScript to display documents.
AZURE SECURITY (Azure Container Instance Security (Admin Account…
AZURE
SECURITY
Azure Container
Instance Security
Docker Hub
Docker Trusted
Registry
(on prem or virtual
private cloud)
Azure Container
Registry
Individual
logins
az acr login --name <acrName>
Service Principal
(headless auth)
RBAC access to registry
Multiple SP can
be assigned to Registry
Admin Account
Disabled by
Default
Do not share
(use individual entities)
push/pull access
to Registry
for testing purpose
2 pwds (you're logged
with one while regenerating
the other)
Monitor & Scan container images
(TwistLock, Aqua Security, sysdig )
Passwords
Password
Reset
(requires
self-registration)
Multiple options like:
. Secret question (lame)
. email link
. Phone sms
. MFA
On Prem Synch to
AD requires 'Pwd Write Back' a
feature of Azure Connect
3 types:
. pwd sync
. passthrouhg auth (to on prem AD)
. Federated ADFS
AD Connect ensures
on prem pwd requirements
are transported/respected