Podman for Enterprise Training
Scale Podman across your organization with this comprehensive 3-day course. Learn to deploy containers with Quadlet and systemd, manage registries and signing policies, implement security controls, and operate Podman at enterprise scale with centralized management.
Training Details
Section titled “Training Details”| Field | Value |
|---|---|
| Duration | 3 days (24 hours) |
| Level | Intermediate |
| Delivery | In-person, Live online, Hybrid |
| Certification | Red Hat Certified Specialist in Containers (EX188) |
Who Is This For?
Section titled “Who Is This For?”- System administrators deploying containers on RHEL/Fedora
- Platform engineers standardizing container workflows
- Operations teams managing containers without Kubernetes
- Security teams enforcing container policies
Learning Outcomes
Section titled “Learning Outcomes”After completing this training, participants will be able to:
- Deploy containers as systemd services using Quadlet
- Configure and manage private container registries
- Implement image signing and trust policies
- Set up centralized storage and networking
- Apply SELinux and seccomp policies to containers
- Manage containers across multiple hosts with Podman remote
Detailed Agenda
Section titled “Detailed Agenda”Day 1: Quadlet and systemd Integration
Section titled “Day 1: Quadlet and systemd Integration”Module 1: Quadlet for Container Services
- Quadlet unit file syntax (.container, .volume, .network, .pod)
- Dependency management and ordering
- Auto-update policies and rollback
- Hands-on: Deploy a multi-service application with Quadlet
Module 2: systemd Lifecycle Management
- Container start ordering and dependencies
- Logging with journald
- Health checks and restart policies
- Hands-on: Configure production-ready systemd container services
Module 3: Auto-Updates and Rollback
- Podman auto-update with registry monitoring
- Rollback strategies on update failure
- Scheduled update windows
- Hands-on: Set up automated container updates with rollback
Day 2: Registry and Security
Section titled “Day 2: Registry and Security”Module 4: Registry Management
- Configuring registries.conf for enterprise use
- Short-name aliases and registry mirrors
- Running private registries with authentication
- Hands-on: Deploy and configure a private registry
Module 5: Image Signing and Trust
- Signing images with GPG and sigstore
- Trust policies in /etc/containers/policy.json
- Enforcing signed-only deployments
- Hands-on: Implement image signing and verification
Module 6: Security Controls
- SELinux contexts for containers
- Custom seccomp and AppArmor profiles
- User namespace isolation and UID mapping
- Hands-on: Apply and test security policies
Day 3: Operations at Scale
Section titled “Day 3: Operations at Scale”Module 7: Podman Remote and API
- Podman socket and REST API
- Remote management across hosts
- Podman machine for macOS and Windows teams
- Hands-on: Manage containers on remote hosts
Module 8: Networking and Storage
- CNI and Netavark networking backends
- DNS resolution and custom networks
- Overlay and local storage drivers
- Hands-on: Configure enterprise networking and storage
Module 9: Monitoring and Troubleshooting
- Container metrics and resource accounting
- Auditing container activity
- Troubleshooting rootless and networking issues
- Hands-on: Build monitoring and audit dashboards
Prerequisites
Section titled “Prerequisites”- Podman Fundamentals or Docker experience
- Linux system administration (systemd, SELinux basics)
- Basic networking knowledge
Delivery Formats
Section titled “Delivery Formats”| Format | Description |
|---|---|
| In-Person | On-site at your company’s location, hands-on with direct interaction |
| Live Online | Interactive virtual sessions with screen sharing and real-time labs |
| Hybrid | Combination of on-site and remote sessions, flexible scheduling |
All formats include hands-on labs, course materials, and post-training support.