Reputation: 1544
Securing local docker registry
We are maintaining our own local docker registry using docker distribution services
$ ps -ef | grep 1035
root 1035 1 0 Apr04 ? 00:00:10 /usr/bin/registry serve /etc/docker-distribution/registry/config.yml
What are the ways to secure the local registry . Is it possible to implement the below
1) Authentication based download from local registry
2) SSL based docker pull
Any other suggestions. We are using Redhat 7
Upvotes: 1
Views: 134
Answers (2)
Reputation: 312
We can Implement a Private docker registry with three different methods.
- Create private docker registry with HTTP
- Create private docker registry with SSL/TLS
- Create a Private docker registry with SSL/TLS enabled and with basic authentication
each implementation has a slightly different configuration and it should be understood well. I have written a blog post on this. You can read it for a better understanding.
Upvotes: 0
Reputation: 564
I have a similar situation, you can use ssl certificate for your registry as the docker documentation here:
https://docs.docker.com/registry/deploying/#get-a-certificate
and for the authentication you can use Restricted access like this:
https://docs.docker.com/registry/deploying/#restricting-access
for more control and a good UI I will recommmend using Portus
Upvotes: 1
Related Questions
- Add Insecure Registry to Docker
- Portainer registry authentication
- allow insecure registry in host provisioned with docker-machine
- Docker private registry
- Securing local docker private registry
- docker private registry within local network
- Docker: What is the simplest way to secure a private registry?
- Docker Registry and Basic Auth
- Setting up a remote private Docker registry
- Access control for private docker registry