Sign images¶ Sign an image Sign images that MKE can trust Import an MKE user’s private key Initialize the trust metadata and add the user’s public certificate Sign the image Add delegations Delete trust data Delete signed images Identify the roles that signed an image Remove trust data for a role Delete the image Where to go next Using Docker Content Trust with a Remote MKE Cluster Prerequisites Registering MSR with a remote Mirantis Kubernetes Engine Signing an image in MSR Enforce Signed Image Tags on the Remote MKE Troubleshooting Example Errors Image or trust data does not exist Image did not meet required signing policy MSR URL must be a registered trusted registry