User's Guide: Image Registry

Setting Multiple Docker Registries

Fortanix Enclave Manager allows you to add and save multiple docker registries in the Applications tab.

To add multiple docker registries:

  1. Click the Applications CCMAppNew11.png tab in Fortanix Confidential Computing Manager (CCM) UI, and then click the Registries option. CCMAppNew12.pngFigure 1: Settings page
  2. In the Registries page, click ADD REGISTRY to add a new registry as shown in Figure 1. The Registry Credentials are the credentials to access the private docker registry from which an image is going to be pulled or pushed.
  3. Fill the form for adding a registry to your account. Once you save this, it is not required to provide the credentials for the docker image while creating an image.
    1. Name: The name of the docker registry. The credentials will be used for every image with the same prefix. For ex: docker.io
    2. Credentials: The username and password of the private docker registry. CCMAppNew13.pngFigure 2: Enter registry credentials for output image
  4. Click ADD REGISTRY to add the docker registry credentials.
  5. The newly created registry credentials will appear in the Registries page table view. CCMAppNew14.pngFigure 4: Registry Credential table

Setting Multiple Azure Container Registries

In some cases, you might need to authenticate using the Azure container registry with az acr login in Azure CLI when the Docker daemon is not running in your environment. For example, you might need to run az acr login in a script in Azure Cloud Shell, which provides the Docker CLI but does not run the Docker daemon.

For this scenario:

  1. run az acr login first with the --expose-token This option exposes an access token instead of logging in through the Docker CLI.
      Azure CLI:
    az acr login -name <acrName> --expose-token
    The output displays the access token, abbreviated here:
    {
    “accessToken”: “eyjhbGci0iJSUzI1NiIs[...]24V7wA”,
    “loginServer”: “myregistry.azurecr.io”
    }
  2. Then, run docker login, passing 00000000-0000-0000-0000-000000000000 as the username and using the access token as the password:
    Docker login myregistry.azurecr.io --username 00000000-0000-0000-0000-000000000000 --password eyjhbGci0iJSUzI1NiIs[...]24V7wA
  3. Now use the Username00000000-0000-0000-0000-000000000000’ and access token as Password to configure the registry on Fortanix CCM. CCMAppNew15.pngFigure 5: Configure registry credentials
    When creating an image of an application in Fortanix CCM, we can use the Azure credentials saved in Fortanix CCM Settings. CCMAppNew16.pngFigure 6: Use saved credentials for EOS image creation
Was this article helpful?
0 out of 0 found this helpful