Azure Container Registry
A registry of Docker and Open Container Initiative (OCI) images, with support for all OCI artifacts.
Simplify container lifecycle management
Build, store, secure, scan, replicate, and manage container images and artifacts with a fully managed, geo-replicated instance of OCI distribution. Connect across environments, including Azure Kubernetes Service and Azure Red Hat OpenShift, and across Azure services like App Service, Machine Learning, and Batch.
Store your container images and beyond
Enable fast, scalable retrieval of container workloads. Azure Container Registry handles private Docker container images as well as related content formats, such as Helm charts, OCI artifacts, and images built to the OCI image format specification.
Utilize pipelines for development and patching
Streamline building, testing, pushing, and deploying images to Azure with Azure Container Registry Tasks. For example, extend your development inner-loop to the cloud by offloading docker build operations to Azure with az acr build. Configure tasks to automatically rebuild application images when base images are updated, or automate image builds when your team commits code to a Git repository. Create multi-step tasks to automate building, testing, and patching multiple container images in parallel, in the cloud. Automate time-based tasks with Task Scheduling.
Scale globally with a few clicks
Enable a single registry to serve users and hosts wherever they are, with multi-master geo-replication. Synchronize an artifact across all replicas by pushing it to any one replica. Speed up deployment by using regionalized webhooks to receive notifications when a local pull becomes available.
Put private images on a private network
Get both the security of a private network and the robustness of a managed, geo-replicated service, using Azure Virtual Network integration and firewall rules. Restrict access to your registry to services deployed within a virtual network—for example, to an Azure Kubernetes Service instance.
Help safeguard content delivery with Content Trust
Ensure the content you pull from the registry is the content run on the node. Sign container images you push to the registry and configure image consumers to verify image integrity upon pulling.
Check images with Azure Security Center integration
Continuously scan images on Azure Container Registry. Discover known vulnerabilities in packages or other dependencies defined in the container image file. Receive vulnerability assessments and recommendations, including specific remediation guidance.
Comprehensive security and compliance, built in
Microsoft invests more than $1 billion annually on cybersecurity research and development.
We employ more than 3,500 security experts who are dedicated to data security and privacy.
Flexible pricing keeps you in control
Choose from multiple service tiers with predictable pricing and options for aligning to the capacity and usage patterns of your registry in Azure.
Get started with an Azure free account
After your credit, move to pay as you go to keep building with the same free services. Pay only if you use more than your free monthly amounts.
Frequently asked questions about Azure Container Registry
Authenticate through Azure Active Directory user, service principal, or admin login, or through Azure managed identity.
See Azure Container Registry best practices and recommendations for tagging and versioning container images.
Yes, you can use trusted images in Azure Container Registry by enabling integrated Docker Notary. Learn more.