包阅导读总结
1.
“`
Docker Desktop、Enterprise、MSI Installer、Login Enforcement、Administration
“`
2.
Docker 为用户推出两项重要更新,包括 Docker Desktop 的 MSI 安装器和新的登录强制替代方案,旨在简化管理、提升安全性,文中还介绍了其优势、使用方法及未来相关改进的规划。
3.
– 新更新
– MSI 安装器
– 优势:增强部署功能、便于大规模安全部署、被广泛接受、支持标准静默安装参数、适合大规模部署
– 安装途径:Docker Admin Console > Security and Access > Deploy Docker Desktop
– 登录强制替代方案
– 业务优势:增加用户登录、更好的座位分配意识
– 集成方式:与 Windows 注册表集成
– 变化:更易集成、简化管理
– 相关操作
– 对使用 Intune MDM 的客户有集成文档
– 安装时可通过 –allowed-org 标志实现登录强制
– 可查看完整安装文档
– 未来规划
– macOS 的 PKG 企业安装器
– macOS 用于强制登录的配置文件
– 支持所有登录强制机制中的多个组织
思维导图:
文章地址:https://www.docker.com/blog/docker-desktop-msi-installer-login-enforcement-alternatives/
文章来源:docker.com
作者:Kat Tomrushka
发布时间:2024/9/3 7:02
语言:英文
总字数:633字
预计阅读时间:3分钟
评分:87分
标签:Docker,MSI 安装程序,登录强制机制,企业部署,IT 管理
以下为原文内容
本内容来源于用户推荐转载,旨在分享知识与观点,如有侵权请联系删除 联系邮箱 media@ilingban.com
New Docker Desktop Enterprise Admin Features: MSI Installer and Login Enforcement Alternative
At Docker, we continuously strive to enhance the ease and security of our platform for all users. We’re excited to launch the general availability for two significant updates: the Docker Desktop MSI installer and a new sign-in enforcement alternative. These updates aim to streamline administration, improve security, and ensure users can take full advantage of Docker Business subscription features.
Docker Desktop MSI installer
Replacing an EXE installer with an MSI installer for desktop applications offers numerous advantages, particularly for enterprise customers:
- Enhanced deployment features: MSI installers provide the ability to manage installations through Group Policy and offer more comprehensive installation and uninstallation control.
- Easier and more secure mass deployment: Facilitates secure, efficient deployment across multiple devices, enhancing IT administration efficiency.
- Widely accepted: MSI installers are recognized in both home and enterprise environments.
- Supports standardized silent install parameters: Aligns with industry standards for silent installations.
- Ideal for large-scale deployment: MSI files can be customized to include specific options, such as silent installs or custom installation paths, making them perfect for corporate environments.
For customers using Intune MDM, we have detailed documentation to assist with integration: Intune MDM Documentation.
To access the installer, navigate to the Docker Admin Console > Security and Access > Deploy Docker Desktop.
Sign-in enforcement: Streamlined alternative for organizations
Recognizing the need for more streamlined and familiar ways to enforce sign-in protocols, Docker is introducing a new sign-in enforcement mechanism for Windows OS (Figure 1). This update brings several business benefits, including increased user logins and better seat allocation awareness, ultimately helping customers maximize their business subscription features and manage license costs more effectively.
We now offer integration with the Windows Registry, allowing admins to add approved organizations directly within familiar Windows system settings. Find out more.
By moving away from the traditional registry.json
method and adopting universally recognized settings, Docker simplifies the process for IT admins already familiar with these systems. This change means:
- Easier integration: Organizations can seamlessly integrate Docker sign-in enforcement into their existing configuration management workflows.
- Simplified administration: Reduces the learning curve and eliminates the need for additional internal approvals for new file types.
These changes are designed to offer quick deployment and familiar processes to IT administrators. We are committed to refining these mechanisms based on user feedback and evolving requirements.
Note that the legacy registry.json
method will continue to work, ensuring support for existing customers, but it should now be considered a legacy method. If you roll out a registry key, it will take precedence over any pre-existing registry.json
.
Roll out the registry key sign-in enforcement at Docker install time via the --allowed-org
flag.
For example, to deploy the MSI installer with sign-in enforcement, run the following:
msiexec /i "DockerDesktop.msi" /L*V ".\msi.log" /quiet /norestart ALLOWEDORG="docker.com"
The above command installs Docker Desktop silently with verbose logging, without restarting the system, and it allows only the specified organization (in this case, “docker.com”) to use Docker Desktop by enforcing sign-in.
Check our full step-by-step installation documentation.
Roadmap
We’re also working on several related administrative improvements, such as:
- PKG enterprise installer for macOS.
- macOS configuration profiles for enforcing sign-in.
- Supporting multiple organizations in all available sign-in enforcement mechanism.
Stay tuned for these exciting updates!
Wrapping up
These updates reflect our ongoing commitment to improving the Docker platform for our users. By introducing the Docker Desktop MSI installer and new sign-in enforcement alternatives, we aim to simplify deployment, enhance security, and streamline administration for organizations of all sizes. We encourage IT teams and administrators to start planning for these changes to enhance their Docker experience.