Trust Center 25.03.0 Image Inventory¶

This topic lists the Trust Center 25.03.0 container images. You can also download this content as a PDF from this Git repository.

Component List¶

Container Image	Component
trust-center/trust-center-ctl	Trust Center Init Job
library/busybox	Busybox
ms_activity_log	Activity Log Service
ms_authorization	Authorization Service
trust-center/asset-mgmt	Asset Management Service
trust-center/command	Command Service
trust-center/endpoint-connector	Endpoint Connector Service
trust-center/endpoint-registry	Endpoint Registry Service
trust-center/endpoint-updater	Endpoint Updater Service
trust-center/health	Health Service
trust-center/ostree-sync	OSTree Sync Service
trust-center/pki-adapter	PKI Adapter Service
job_rotate_signing_key	Rotate Signing Key Job
ms_secret_mgmt	Secret Management Service
trust-center/trust-enforcement	Trust Enforcement Service
trust-center/vault-unseal	Vault Unseal Job
trust-center/docs-external-v1	External API Docs
hashicorp/vault	Vault
library/redis	Redis
oliver006/redis_exporter	Redis Prometheus Exporter
confluentinc/cp-kafka	Kafka
danielqsj/kafka-exporter	Kafka Prometheus Exporter
library/mariadb	MariaDB
library/mongo	MongoDB
bitnami/mongodb-exporter	MongoDB Prometheus Exporter
ingress-nginx/controller	NGINX Ingress Controller
fluent/fluent-bit	Fluent Bit
fluent/fluentd	Fluentd
jetstack/cert-manager-cainjector	cert-manager CA Injector
jetstack/cert-manager-controller	cert-manager Controller
jetstack/cert-manager-webhook	cert-manager Webhooks

Verifying Container Images¶

Copy the container registry password from global.images.password in your Trust Center's config.yaml file.
Log in to the container registry:
```
$ docker login docker.cloudsmith.io
Username: teradici/trust-center
Password: <Password>
```
Info

If using a beta release, use teradici/trust-center-beta instead.

Check the details for a specific container image in the remote registry:

$ docker buildx imagetools inspect <Image tag>
Name:      <Image tag>
MediaType: application/vnd.docker.distribution.manifest.v2+json
Digest:    sha256:002f688e9756d464d2064b526d4446306210198e8c8b234b36c9a8d5399b80d7

The <Image tag> should be the full URI to the image, example, docker.cloudsmith.io/teradici/trust-center/fluent/fluentd:v1.16-2

Download the image to your local system:
```
$ docker pull <Image tag>
[...]
$ docker inspect --format='{{index .RepoDigests 0}}' <Image tag>
<Image tag>@sha256:002f688e9756d464d2064b526d4446306210198e8c8b234b36c9a8d5399b80d7
```
The sha256 hash of the images of the remote container registry and the local copy must match. Additionally, the hash should also match the image hash listed for each container image.

Component Details¶

Trust Center Init Job¶

This container runs on initial installation and upgrade of Trust Center. It initializes and upgrades the Trust Center service configuration.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/trust-center-ctl
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:97a325f6d1e7d5a53398a2d0b7b3c60d0c1fb8d2bf83675cf47b0c3268a5ceb6

Busybox¶

This container is used for various init containers that prevent services from starting up before dependencies are ready.

Info

We use the official Docker image for Busybox.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/library/busybox
Product	Trust Center
Supplier	Open Source
Version	1.36.1
Image Hash	sha256:023917ec6a886d0e8e15f28fb543515a5fcd8d938edb091e8147db4efed388ee

Activity Log Service¶

The Activity Log service handles events generated by Trust Center services, and exposes an API to query activity logs.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/ms_activity_log
Product	Trust Center
Supplier	HP Inc.
Version	0.0.864_43ed890
Image Hash	sha256:87ede8e0fb2246c41a29ff038d893d9ed5dde0dda834f7eb42870e6ea99dce7d

Authorization Service¶

The Authorization service handles authentication and authorization for Trust Center API service accounts.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/ms_authorization
Product	Trust Center
Supplier	HP Inc.
Version	0.0.5833_a4791a3
Image Hash	sha256:207a161fa0c49d1b900bce9f92f07a599838be47e8545809d149e8ec63a520eb

Asset Management Service¶

The Asset Management service enables storing and retrieving assets (such as support bundles, branding assets) within the Trust Center.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/asset-mgmt
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:f6128b8efa26644671359383a25a5a9a7854bc24b831660da1d40044a85c58e0

Command Service¶

The Command service enables sending commands to endpoints connected to the Trust Center and processing command status updates.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/command
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:e7973abae3c16b30bc63a3446799088135ca7fd4e44e608a7b045cc2cdea4a24

Endpoint Connector Service¶

The Endpoint Connector service provides APIs which Trusted Zero Clients and other endpoints use to communicate with the Trust Center.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/endpoint-connector
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:0b7206dd49c0223c5c23cdc174238bf0610ca2157ce34f643fba61ee8d88c66b

Endpoint Registry Service¶

The Endpoint Registry service maintains endpoint digital twins and provides APIs for management of endpoint configuration.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/endpoint-registry
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:71e8c9b1bacd39521c4bbb78334354c0227f8076ca284565bed4ee496e3c5add

Endpoint Updater Service¶

The Endpoint Updater service is responsible for triggering OTA updates for connected endpoints when requested in endpoint configuration.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/endpoint-updater
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:4d2b236a6bd4dda52e809b0f9f006dd6d0c87d58380d0784c53e5afabccbbae7

Health Service¶

The Health service provides API endpoints for Trust Center deployment health-checks.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/health
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:121eceb1e14541e493b9c34816b26d0e3a2790d5be33d23ec84501b7abaf4409

OSTree Sync Service¶

The OSTree Sync service is responsible for storing Trusted Zero Client OTA update images and serving them to endpoints when requested.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/ostree-sync
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:f3ecac2d20eedb9659e9785657e05e7290148342d1412af5f7384277dd2358b5

PKI Adapter Service¶

The PKI Adapter Service is responsible for for providing an interface for Trust Center services to request certificates and tokens generated by internal and external issuers.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/pki-adapter
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:b04f0a65b8123d7985caccb6c2c9dc22cb8a48447e5e82c4d61ec51ba3f16927

Rotate Signing Key Job¶

The Rotate Signing Key job is used as a perodic CronJob in the Trust Center to rotate internal token signing keys.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/job_rotate_signing_key
Product	Trust Center
Supplier	HP Inc.
Version	0.0.338_df40f59
Image Hash	sha256:06650cc96fd6419fabe526306add72af5157e10a15028336250c31f60072e99f

Secret Management Service¶

The Secret Management service provides an interface for Trust Center services to access key/value secrets from internal (Vault) and external secret storage providers.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/ms_secret_mgmt
Product	Trust Center
Supplier	HP Inc.
Version	0.0.690_b709211
Image Hash	sha256:ed8044a52a74886470b84ea3ddfba3762eef537fed16d6ef3e8568f99ae4370f

Trust Enforcement Service¶

The Trust Enforcement Service is responsible for facilitating policy evaluation and enforcement on endpoints connected to the Trust Center.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/trust-enforcement
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:c3cc33c3c2f9862cc0231c666c7e7e2bb5590ad44823908e45960eb00226116f

Vault Unseal Job¶

The Vault Unseal job is a CronJob used by the Trust Center to ensure the internal Vault instance (for on-prem deployments) is unsealed.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/vault-unseal
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:abd40026fe6622f1788de066ff5b0741a844df583cb5bd4437c7c9b3b34f2f50

External API Docs¶

This container serves a copy of the External API documentation corresponding to this version of the Trust Center.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/trust-center/docs-external-v1
Product	Trust Center
Supplier	HP Inc.
Version	25.03.5-rc1
Image Hash	sha256:7e55f3b0748df0926aa6f67b130efa9984786c692547d13578aa39e6559e4773

Vault¶

Hashicorp Vault is a third party component deployed with the Trust Center in on-premises deplyoments to securely store deployment secrets.

We use the official Docker image for Hashicorp Vault: https://hub.docker.com/r/hashicorp/vault

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/hashicorp/vault
Product	Hashicorp Vault
Supplier	Hashicorp
Version	1.19.1
Image Hash	sha256:9014214058baad9bfb26959ad1b1946d04b1d22e10d454de271402d995c6e963

Redis¶

Description¶

Redis is a third-party component deployed with the Trust Center to function as an in-memory cache.

Info

We use the official Docker image for Redis.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/library/redis
Product	Redis
Supplier	Redis Ltd.
Version	7.2.8-alpine
Image Hash	sha256:5fc10e150821a2a7ebb472fcd5bd637b98764d9a6fa628b3b8916d4989dbb37d

Redis Prometheus Exporter¶

Small third-party component used to export Prometheus metrics from Redis.

Info

We use the mirrored Docker Hub image.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/oliver006/redis_exporter
Product	Redis
Supplier	Open Source - Oliver006
Version	v1.69.0-alpine
Image Hash	sha256:d8074df3c7dc9766ef0bd66f65772404fba7ee9968041c039b844dd5a94e95a3

Kafka¶

Kafka is deployed as part of the Trust Center to handle message queueing.

Info

We use the Kafka Docker image (Community Version) maintained by Confluent Inc.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/confluentinc/cp-kafka
Product	Kafka
Supplier	Confluent Inc.
Version	7.9.0
Image Hash	sha256:e6b87a4a8ca07aadba9c04d86515a340f67cd11ca6160c9b07205f3d88dfb5f1

Kafka Prometheus Exporter¶

Small third-party component used to export Prometheus metrics from Kafka.

Info

We use the mirrored Docker Hub image.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/danielqsj/kafka-exporter
Product	Kafka
Supplier	Open Source - Daniel Qian
Version	v1.9.0
Image Hash	sha256:5a639c8c918da17c8b01cc87e01fc4bcaa3554cbed5e76bd84c5874bcd8553e0

MariaDB¶

MariaDB is included in this release to facilitate data migration on upgrade from older Trust Center versions which required it. It will be removed in a subsequent release.

Info

We use the official Docker image for MariaDB.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/library/mariadb
Product	MariaDB
Supplier	MariaDB Foundation
Version	10.4.34
Image Hash	sha256:420220377676e453361b3ddc4aea0e415164568042b69962a115220012cc5305

MongoDB¶

MongoDB is included in on-premises deployments of the Trust Center to handle data persistence.

Info

We use the official Docker image for MongoDB.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/library/mongo
Product	MongoDB
Supplier	MongoDB Inc.
Version	5.0.31
Image Hash	sha256:17dbe8efbdd2cfcb738582b779e5d4fe1e8b16035a5cee56b84231735513a91b

MongoDB Prometheus Exporter¶

Small third-party component used to export Prometheus metrics from MongoDB.

Info

We use the mirrored Docker Hub image.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/bitnami/mongodb-exporter
Product	MongoDB
Supplier	Bitnami
Version	0.44.0
Image Hash	sha256:e1ead1a2fcc2be3bd803a434367a704f24964c943c8287356fbcb20b9cf7b798

NGINX Ingress Controller¶

The Trust Center uses the NGINX Ingress controller to handle ingress to Trust Center APIs (including TLS, WAF, etc.)

Info

We use the official Docker image for nginx-ingress.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/ingress-nginx/controller
Product	NGINX
Supplier	NGINX Inc.
Version	v1.12.1
Image Hash	sha256:466e6b255d776c237286f013efe14da1477b172a2f444ca6806d66c9fad27111

Fluent Bit¶

Fluent Bit is a third party log processor deployed with the Trust Center to facilitate log aggregation.

Info

We use the official Docker image for Fluent Bit.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/fluent/fluent-bit
Product	Fluentd
Supplier	Fluent
Version	4.0.0
Image Hash	sha256:cab75a7c882a32843bfbc21de90558525c3b90474caedf497fb9705e0a81198b

Fluentd¶

Fluentd is a third party log data collector deployed with the Trust Center to facilitate log aggregation.

Info

We use the official Docker image for Fluentd.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/fluent/fluentd
Product	Fluentd
Supplier	Fluent
Version	v1.17-1
Image Hash	sha256:c795c1bf9918c77a5415e2fda5825f9341f2dd0645d9adfb91f8cae3a3e6b240

cert-manager CA Injector¶

We include cert-manager in the Trust Center deployment to automatically manage API ingress certificates.

Info

We use the Docker image for the cert-manager CA injector managed by Jetstack.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/jetstack/cert-manager-cainjector
Product	cert-manager
Supplier	cert-manager Project
Version	v1.17.1
Image Hash	sha256:da14ecb33386bd53c86d22a7a996e9783da5a09aa4ce9c55e161128fc2632985

cert-manager Controller¶

cert-manager is included in the Trust Center deployment to automatically manage API ingress certificates.

Info

We use the Docker image for the cert-manager controller managed by Jetstack.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/jetstack/cert-manager-controller
Product	cert-manager
Supplier	cert-manager Project
Version	v1.17.1
Image Hash	sha256:8615625f29f821542fca5351e3791a21121bf869aa63c72607e0a51e4c233a4a

cert-manager Webhooks¶

Description¶

We include cert-manager in the Trust Center deployment to automatically manage API ingress certificates.

Info

We use the Docker image for the cert-manager webhooks managed by Jetstack.

Metadata¶

Field	Value
Container Image	docker.cloudsmith.io/teradici/trust-center/jetstack/cert-manager-webhook
Product	cert-manager
Supplier	cert-manager Project
Version	v1.17.1
Image Hash	sha256:f7ad7d3c6dbe73ead365c2324dbe6575b4fc618ed06f0863f250c5eafb35a246