ACR
Definition
ACR stands for Azure Container Registry, a managed Docker registry service provided by Microsoft Azure. It allows developers to store and manage container images for all types of container deployments. ACR integrates seamlessly with Azure Kubernetes Service (AKS) and other Azure services, providing a secure and scalable environment for container image management. It supports private registries, enabling secure access and management of container images.
Secure Settings Example
# Azure CLI command to create a secure ACR with admin user disabled
az acr create --resource-group myResourceGroup --name mySecureRegistry --sku Basic --admin-enabled false
# Example of a secure ACR configuration in an Azure Resource Manager (ARM) template
{
"type": "Microsoft.ContainerRegistry/registries",
"apiVersion": "2023-01-01",
"name": "mySecureRegistry",
"location": "eastus",
"sku": {
"name": "Basic"
},
"properties": {
"adminUserEnabled": false,
"networkRuleSet": {
"defaultAction": "Deny",
"ipRules": [
{
"action": "Allow",
"value": "203.0.113.0/24"
}
]
}
}
}
Insecure Settings Example
# Azure CLI command to create an insecure ACR with admin user enabled
az acr create --resource-group myResourceGroup --name myInsecureRegistry --sku Basic --admin-enabled true
# Example of an insecure ACR configuration in an ARM template
{
"type": "Microsoft.ContainerRegistry/registries",
"apiVersion": "2023-01-01",
"name": "myInsecureRegistry",
"location": "eastus",
"sku": {
"name": "Basic"
},
"properties": {
"adminUserEnabled": true,
"networkRuleSet": {
"defaultAction": "Allow"
}
}
}