1. Fortanix
  2. Confidential Computing Manager
  3. User Guide

Running an Example Application using AWS Nitro Platform

Last Updated: 

The Fortanix Confidential Computing Manager (CCM) environment is designed with the goal of protecting any application. This article describes how to run an Nginx application on a compute node.

Running an Nginx Enclave OS Application

Prerequisites:

  • An Nginx application should be created.

Run an Enclave OS Application on Compute Node

  1. In the Fortanix CCM UI, click the + APPLICATION button. App_Nitro.png
    Figure 1: Create new application
  2. Add an Nginx Application. See the article “User's Guide: Add and Edit an Application” for more information.
  3. Approve the domain for the Nginx Application. See the article “User's Guide: Tasks” for more information.
  4. In the detailed view of the application, click the + IMAGES button. Image_Nitro.png
    Figure 2: Create an image
  5. Create an image of the Nginx Application by providing a proper tag. See the article “User's Guide: Create an Image” for more information.
  6. Approve the image for the Nginx Application. See the article “User's Guide: Tasks” for more information.
  7. Run the application image using the following command:

    sudo docker run -it --rm --privileged -v /run/nitro_enclaves:/run/nitro_enclaves -e RUST_LOG=debug -e NODE_AGENT=http://172.31.14.110:9092/v1/ -p 80:80 -p 443:443 513076507034.dkr.ecr.us-west-1.amazonaws.com/development-images/em-test-framework-nginx-9913:nitro

    Where,
    • 9092 is the default port on which Node Agent listens to.
    • 172.31.14.110 is the node agent Host IP.
    • em-test-framework-nginx-9913:nitro is the converted app that can be found in the Images tab under the Image Name column in the Images table 
      NOTE
      • Please use your own inputs for Node IP, Port, and Converted Image in the above format. The information in the example above is just a sample.
      • You can optionally pass the environment variable ENCLAVEOS_DEBUG to run the application in debug mode.
  8. To verify that the application is running, click the APPLICATION tab in the Fortanix CCM UI and verify that there is a running application image associated with it and displayed with the application in the detailed view of the application. 

Comments

Please sign in to leave a comment.

Was this article helpful?
0 out of 0 found this helpful