To generate a self-signed certificate, you can follow the official instructions Create a CA, server and client keys with OpenSSL on the Docker site.
To enable TLS we need obviously need a certificate for the Docker daemon to present.
Docker doesn’t authenticate Code Stream). Enable Docker Host Remote API over TLSĬode Stream can connect to the Docker endpoint using TLS to ensure traffic between the two hosts is encrypted (we can’t currently use a client certificate for mutual TLS – i.e. You can then use netstat to validate that dockerd is listening on the configured port: sudo netstat -lntp | grep dockerdĪt this point we could add the Docker host to Code Stream and it would work perfectly well – however, the connection will unencrypted and data can potentially be intercepted. Reload the systemd configuration, and restart the service: sudo systemctl daemon-reload & sudo systemctl restart rvice
I used the official docker install documentation – CentOS, Debian, Fedora, UbuntuĬreate an override file for the Docker Service: sudo systemctl edit rviceĪdd the following to configure the override to allow the docker daemon to listen on any IP (or specify the IP address you want to listen on):ĮxecStart=/usr/bin/dockerd -H fd:// -H tcp://0.0.0.0:2375 You don’t have to use this method to install Docker, again, any supported method and storage overlay is fine. I install docker using the Docker Repositories with the default storage drivers. Of course, the actual requirement depends on how many concurrent containers you’re running, the requirements of those containers and the task you’ll be performing.
Deploy a VM with enough CPU and RAM for your needs – I’d suggest 2CPU/4GB is enough for a development environment, and I’d probably double that for production. I’ve tested these processes on the Ubuntu 18.04 and CentOS 7, but any supported Linux distribution can be used, so long as the outcome of the steps is the same. One question I get asked a lot is “how do I set up a Docker host for Code Stream?” – well, here’s the answer! Choose your Guest OS VRealize Automation Code Stream uses a Docker host to run CI Tasks by spinning up a specified container for the lifetime of the Pipeline, allowing you to execute scripted tasks inside the container and return the results.