我正在研究 Azure 中的容器服务与我们的本地容器实现(包括 Docker Trusted Registry)相比如何。
是否需要使用 Azure 容器注册表才能使用 Azure 容器?或者我们可以绑定(bind)到我们现有的本地 Docker 可信注册表吗?
谢谢!
最佳答案
是的,您可以使用 private registry --- Azure 容器实例的 Docker 可信注册表。
Containers are built from images that are stored in one or more repositories. These repositories can belong to a public registry, like Docker Hub, or to a private registry. An example of a private registry is the Docker Trusted Registry, which can be installed on-premises or in a virtual private cloud. You can also use cloud-based private container registry services, including Azure Container Registry.
A publicly available container image does not guarantee security. Container images consist of multiple software layers, and each software layer might have vulnerabilities. To help reduce the threat of attacks, you should store and retrieve images from a private registry, such as Azure Container Registry or Docker Trusted Registry. In addition to providing a managed private registry, Azure Container Registry supports service principal-based authentication through Azure Active Directory for basic authentication flows. This authentication includes role-based access for read-only (pull), write (push), and other permissions.
通过 Azure 门户创建 ACI 时,您将看到三个选项。
关于docker - 是否需要使用 Azure 容器注册表才能使用 Azure 容器?,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/63196009/