User's Guide: Image Registry

  • Updated on Jul 17, 2024
  • Published on Jun 12, 2024
  • 1 minute(s) read

1.0 Setting Multiple Docker Registries

Fortanix Confidential Computing Manager allows you to add and save multiple docker registries in the Applications menu item.

To add multiple docker registries:

  1. Click the Applications menu item in Fortanix CCM UI left navigation bar, and then click the Registries menu item.  

    add-registry.png

    Figure 1: Settings Page

  2. On the Registries page, click ADD REGISTRY to add a new registry as shown in Figure 1. The Registry Credentials are the credentials to access the private docker registry from which an image is going to be pulled or pushed.

  3. Fill out the form for adding a registry to your account. After you save this, it is not required to provide the credentials for the docker image while creating an image.

    1. Name: The name of the docker registry. The credentials will be used for every image with the same prefix. For ex: docker.io

    2. Credentials: The username and password of the private docker registry.  

      add-registry-details-screen.png

      Figure 2: Enter Registry Credentials for Output Image

  4. Click ADD REGISTRY to add the docker registry credentials.

  5. The newly created registry credentials will appear in the Registries page table view.  

    registry-added.png

    Figure 3: Registry Credential Table

2.0 Setting Multiple Azure Container Registries

In some cases, you might need to authenticate using the Azure container registry with az acr login in Azure CLI when the Docker daemon is not running in your environment. For example, you might need to run az acr login in a script in Azure Cloud Shell, which provides the Docker CLI but does not run the Docker daemon.

For this scenario:

  1. Run az acr login first with the --expose-token parameter. This option exposes an access token instead of logging in through the Docker CLI.
      Azure CLI:

    az acr login -name <acrName> --expose-token

    The output displays the access token, abbreviated here:

    {
“accessToken”: “eyjhbGci0iJSUzI1NiIs[...]24V7wA”,
“loginServer”: “myregistry.azurecr.io”
}

  2. Then, run docker login, passing 00000000-0000-0000-0000-000000000000 as the username and using the access token as the password:

    Docker login myregistry.azurecr.io --username 00000000-0000-0000-0000-000000000000 --password eyjhbGci0iJSUzI1NiIs[...]24V7wA

  3. Now use the Username00000000-0000-0000-0000-000000000000’ and access token as Password to configure the registry on Fortanix CCM.  

    add-registry-details-screen-1.png

    Figure 4: Configure Registry Credentials

  4. When creating an image of an application in Fortanix CCM, we can use the Azure credentials saved in the Fortanix CCM Settings page.  

    edp-image-page.png

    Figure 6: Use Saved Credentials for EOS Image Creation

Related articles