From 1ebdf7ad417c20643f3a49d4cbc636db0cc9c8db Mon Sep 17 00:00:00 2001
From: Dawn W Docker <dawn.wood@users.noreply.github.com>
Date: Wed, 10 Jul 2019 13:38:02 -0700
Subject: [PATCH] adding file

---
 .../admin/configure/admission-controllers.md  | 29 +++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100644 ee/ucp/admin/configure/admission-controllers.md

diff --git a/ee/ucp/admin/configure/admission-controllers.md b/ee/ucp/admin/configure/admission-controllers.md
new file mode 100644
index 0000000000..74b36606ea
--- /dev/null
+++ b/ee/ucp/admin/configure/admission-controllers.md
@@ -0,0 +1,29 @@
+---
+title: Admission controllers
+description: Learn about how admission controllers are used in docker.
+keywords: cluster, psp, security
+---
+
+# Admission controllers
+
+This is the current list of admission controllers used by Docker:
+ ### Default
+- [NamespaceLifecycle](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#namespacelifecycle)
+- [LimitRanger](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#limitranger)
+- [ServiceAccount](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#serviceaccount)
+- [PersistentVolumeLabel](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#persistentvolumelabel)
+- [DefaultStorageClass](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)
+- [DefaultTolerationSeconds](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#defaulttolerationseconds)
+- [NodeRestriction](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+- [ResourceQuota](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#resourcequota)
+- [PodNodeSelector](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#podnodeselector)
+- [PodSecurityPolicy](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#podsecuritypolicy)
+
+### Custom
+- UCPAuthorization
+- CheckImageSigning
+- UCPNodeSelector
+
+**Note:** you cannot enable or disable your own admission controllers. For more information about why, see [Supportability of custom kubernetes flags in universal control plane](https://success.docker.com/article/supportability-of-custom-kubernetes-flags-in-universal-control-plane)
+
+For more information about pod security policies in Docker, see [Pod security policies](/ee/ucp/kubernetes/pod-security-policies.md).
\ No newline at end of file