- Open Source
Accelerate your organization’s time to value from containers and Kubernetes with a simple yet powerful service delivery platform for containerized applications.
Portainer Business gives you the enterprise functionality you need to deploy Portainer at scale inside your organization. It contains all of the CE features you have come to depend on plus RBAC, oAuth, quota management, better logging and a formal support agreement, which makes Portainer Business suitable for deployment in any business environment.
Portainer Business’ RBAC functionality works with Docker, Docker Swarm and Kubernetes. It allows you to define fine-grained access controls for everyone in the team. There are multiple roles available to select from and each has pre-defined privileges, which allow users to perform specific actions. Users are assigned roles and are associated with end points and/or teams.
If you’re using Portainer inside an organization with established authentication systems in place you will likely want to exploit them rather than create something new. Portainer Business allows you to easily connect to Microsoft, Google and Github based OAuth systems. It’s quick and easy to set up and means you can onboard and manage team members without creating anything new.
Portainer Business gives you a simple way to manage your Docker registries. Not only does Portainer Business make browsing registries and their associated content super-easy, it also allows you to manage and manipulate the tags associated with repos and images. This simplifies the management overhead associated with repos and reduces the error rate.
Portainer Business allows you to backup and download your instance of Portainer as a file and/or store the backup in an S3 bucket. Automated scheduled backups to the S3 bucket can be easily set up through Portainer
Portainer Business allows you to optimize available storage in a given resource pool or namespace by configuring quotas. The quota determines the maximum amount of storage an application may consume within a given cluster.
Portainer Business allows you to restrict access to the default name space. This forces users to deploy applications on a separate resource pool and ensures that applications are allocated the resources they need to run efficiently and there are no conflicting demands
Portainer Business allows an administrator to set limits on load balancer quotas on a namespace by namespace basis. This allows you to better manage the costs associated with your load balancer resource in your Kubernetes cluster.
Portainer Business allows you to disable the resource-over commit for your Kube cluster as well as allowing you to determine the percentage of resources you wish to allocate to running Kubernetes within your cluster. This feature helps you maintain the health of your cluster and ensures your system won’t be compromised by resource hungry applications.
Portainer provides a log of all user authentication requests, and journals the success of failure of each login as a record of when users engaged with Portainer. This log is retained for one week before being purged. The authentication log is primarily designed to alert admins if brute-force password login bots are attempting to login as a user.
With this feature you can manually pull a new container and/or stack image without restarting the container / stack. This means you get the simplest possible workflow without any service interruption as the image is refreshed.
With this feature you can generate a webhook from within Portainer Business that you can use to automatically pull new container/stack images. The webhook is used by your CI system to tell Portainer to pull a new version of the image/stack each time a new version is available.
With this feature you can set up a timeframe in which application updates will happen automatically. Outside of this timeframe, automatic updates won't occur.
With this feature, applications deployed via Portainer will be in kept in sync automatically with whatever is in Git. So, when the Git repo is changed or updated, Portainer will automatically deploy a new version of the application.
This feature auto-populates users against members of Teams in a Microsoft AD by mapping them in Portainer.
This setting in Portainer disables the ability to log in through internal authentication and will enforce that logins can only be processed by the an external option such as Microsoft AD, LDAP or OAuth. This feature is only available in Portainer Business Edition.
Portainer can be configured to accept Lightweight Directory Access Protocol (LDAP) authentication if your organization has implemented LDAP or Active Directory authentication. When users attempt to log into Portainer, the application will authenticate them against your LDAP directory or Active Directory. If authentication is successful, the user is allowed to log into Portainer.