Add Kubernetes differences/value adds (#507)

* Add Kubernetes differences/value adds * Add feedback
2018-02-20 14:59:30 -08:00 · 2018-02-20 14:59:30 -08:00 · f28e78b080
parent 45a7c2d7c1
commit f28e78b080
1 changed files with 15 additions and 1 deletions
--- a/ee/index.md
+++ b/ee/index.md
@ -73,7 +73,21 @@ Kubernetes features on Docker EE include:
 - Interoperability between Swarm and Kubernetes workloads for networking and
  storage

-The default Docker EE installation includes both  Kubernetes and Swarm
+In addition, UCP integrates with Kubernetes by using admission controllers,
+which enable:
+
+- Authenticating user client bundle certificates when communicating directly
+  with the Kubernetes API server
+- Authorizing requests via the UCP role-based access control model
+- Assigning nodes to a namespace by injecting a `NodeSelector` automatically
+  to workloads via admission control
+- Keeping all nodes in both Kubernetes and Swarm orchestrator inventories
+- Fine-grained access control and privilege escalation prevention without
+  the `PodSecurityPolicy` admission controller
+- Resolving images of deployed workloads automatically, and accepting or
+  rejecting images based on UCP's signing-policy feature
+
+The default Docker EE installation includes both Kubernetes and Swarm
 components across the cluster, so every newly joined worker node is ready
 to schedule Kubernetes or Swarm workloads.