Built on industry standards, secured for the enterprise

diagram depicting Mirantis Container Runtime

Mirantis Container Runtime is the industry-leading enterprise container engine at the heart of Mirantis Kubernetes Engine (formerly Docker Enterprise). It is based on containerd, the Cloud Native Computing Foundation (CNCF) core container runtime.


illustration of blue hexagon with three arrows overlaid and pointing upward

Runs Anywhere

Running on Linux (CentOS, RHEL, and Ubuntu) and Windows Server operating systems, Mirantis Container Runtime helps Mirantis Kubernetes Engine worker nodes operate efficiently on any substrate, and host any kind of containerized workload under Kubernetes and/or Swarm orchestration. Operators can use familiar tools and consistent automation, everywhere: portable DevOps.

illustration of four gradient blue puzzle pieces put together

Certified Plugins

Plugin support lets Mirantis Kubernetes Engine exploit best-in-class Kubernetes container networking fabrics like Calico, Kubernetes ingress solutions like Istio, and GPU-equipped and other specialized hardware. Component and node capabilities discovered by plugin are labeled in Mirantis Kubernetes Engine, appropriately tagged, and made immediately available to application deployments for scheduling.

illustration of blue cube with large keyhole on its side and a hanle on the top

Intrinsic Security

“Secure by default,” Mirantis Container Runtime deploys with restricted host access, end-to-end encryption, secure mutual TLS authentication and cryptographic node identity. Security features are supported by Mirantis Kubernetes Engine’s FIPS 140-2-compliant cryptographic module, validated by the National Institute of Science and Technology (NIST), fulfilling key requirements of the Federal Information Security Management Act (FISMA).

illustration of blue magnifying glass examining lines

Auditable and Trusted

Integration with Mirantis Secure Registry (formerly Docker Trusted Registry), Mirantis Kubernetes Engine OSCAL automated-audit functionality, plus the ability to run vulnerability scans on Docker containers help make Mirantis Container Cloud an efficient solution for government and commercial customers with stringent data security, privacy, and computational integrity requirements.

blue Kubernetes logo

Preferred for Kubernetes (and Swarm)

Mirantis Container Runtime is validated to work with Kubernetes Container Runtime Interface (CRI) and is the most-popular container runtime for Kubernetes, and also for Swarm. Mirantis Kubernetes Engine can orchestrate nodes in Kubernetes, Swarm, or ‘mixed’ configurations, so it exploits Mirantis Container Cloud’s flexibility in letting you configure clusters to match workload capacity and placement requirements today, then change them quickly to adapt to new requirements.

illustration of pencil signing a piece of paper

Enforce Signed Images

Mirantis Container Runtime lets you validate container provenance by requiring proper digital signing of images before they can be deployed. Users are prevented from using container images or composing containers on base layers from unknown sources.

illustration of four, small puzzle pieces all put together

Certified Plugins

Integrate Mirantis Kubernetes Engine with your preferred networking, storage, and logging tools through validated and certified plugins. The plugin architecture extends capabilities of Mirantis Kubernetes Engine to 3rd-party provided tools.

blue speech bubble with question mark overlaying white speech bubble with lines of text

Enterprise-Class Support

Mirantis Support includes defined SLAs and private support channels, 24 months of extended software maintenance. Visit our support page to learn more.