Using MACVLAN in Portainer.io

Pretty much everyone is comfortable with docker bridge networking, and probably even overlay networking, but how many have used Docker's MACVLAN network driver? MY guess is not many, primarily because its a nightmare to setup. Well not anymore, as now with Portainer 1.19.2 we have dramatically simplified the setup and use of this powerful networking option.

Read more 8 Comments

LDAP Users/Groups in Portainer

So, you have Portainer running, and now you want to integrate with your corporate LDAP directory in order to centralise user and group management? Well read up because this article is for you..

First up, Portainer will allow you to auto-create users that successfully authenticate via LDAP; however any users auto-created will not be able to access any endpoint unless they are manually granted access to an endpoint, or map to a corresponding Portainer Team which has access to an endpoint (a Portainer Team maps to an LDAP group when enabled).

Lets get started.

Kubernetes Networking (on-premises)

Last week I had the opportunity to explain Kubernetes Networking in a way that needed to make sense to non-Kubernetes people; needless to say, this is not a trivial task, as Kubernetes is a complex beast, and networking is probably one of the most complex components.

WAN speeds slowing you down?

It seems that everyone is on the data drug at the moment, and we are seeing demand for bandwidth surging at a rate that is beyond most organisations ability to cost effectively deliver. Often, self-hosted application business traffic is being forced to compete for WAN bandwidth with legitimate business (or other) internet traffic.

I want to deploy Kubernetes… hmm.. why??

With all the fanfare surrounding Kubernetes, I often wonder why a product so operationally complex is winning hearts and minds of IT folk so easily.

To be clear, when I say "Kubernetes" what I mean is self-built/managed deployments, not the "as a service" Kubernetes powered offerings from Cloud Providers, which to be fair, remove 95% of the complexity.

Enable remote access to Docker for Windows 10

With the release of Docker for Windows 10, more and more users are wanting to experiment, and many want to use Portainer as a UI to manage the Docker daemon.

Unfortunately, Docker to make exposing the Daemon externally all that straight forward, so I will show you how its done (note that I DO NOT recommend exposing the Daemon without any TLS authentication, you should always configure your Daemon with TLS to ensure only authorised people can manipulate your Docker Daemon):

Read more 5 Comments

How to enable LDAP/AD Authentication in Portainer.io

REVISED MARCH 2020

Portainer can be configured to accept Lightweight Directory Access Protocol (LDAP) authentication if your organization has implemented LDAP or Active Directory authentication. When users attempt to log into Portainer, the application will authenticate them against your LDAP directory or Active Directory.

Read more 2 Comments

Radically Different Storage Solutions

Storage is Changing; analytics, file stores, research data, disk to disk backups and other new workloads are placing a strain on traditional IT storage technology. New workloads demand new protocols and APIs like S3, Swift and Hadoop, but it’s not always silos.

CI/CD for Docker Environments

One of the great benefits of Docker is that it enables a seamless CI/CD process; Containers are simply a running read only instance of a Docker Image, and updating a container is as simple as updating the image file and then redeploying the container from the updated image.