Skip to content

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.
  • Labs icon Lab
  • A Cloud Guru
Azure icon
Labs

Configure Service Principal Authentication for Azure Container Registry

Azure Container Registry provides the functionality to store and share private container images. Within this hands-on lab, we’ll review the permissions for a service principal to access Azure Container Registry. This is helpful in scenarios where you have apps/scripts that need some form of automated access to push/pull images to/from your registry. We'll push and pull some images from the registry and run a container image.

Try for free Contact sales
Azure icon
Labs

Path Info

Level
Clock icon Intermediate
Duration
Clock icon 30m
Published
Clock icon Nov 19, 2021

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.

Table of Contents

  1. Challenge

    Confirm Service Principal Access to Push/Pull Container Images

    1. Confirm the service principal has access via Azure RBAC to push/pull container images.
    2. Collect the registry login server from the Azure portal. You'll need it later when <REGISTRY_LOGIN_SERVER> is specified.

  2. Challenge

    Push/Pull and Run Container Images Using the Service Principal

    1. Log in to the VM.
    2. Log in to the container registry using the service principal's credentials and the following code: docker login -u <SP_APPLICATION_ID> -p <SP_SECRET> <REGISTRY_LOGIN_SERVER>
    3. Pull the ASP.NET sample container image from Microsoft's public repository using docker pull mcr.microsoft.com/dotnet/samples:aspnetapp .
    4. Tag the image with your repository using docker tag mcr.microsoft.com/dotnet/samples:aspnetapp <REGISTRY_LOGIN_SERVER>/aspnetapp.
    5. Push the image to your repository using docker push <REGISTRY_LOGIN_SERVER>/aspnetapp.
    6. Retreive the local Microsoft image ID with docker image ls .
    7. Remove the Microsoft image by running docker image rm <IMAGE_ID> -f.
    8. Pull the image from your repository with docker pull <REGISTRY_LOGIN_SERVER>/aspnetapp.
    9. Run the image with docker run -p 8080:8080 -d <REGISTRY_LOGIN_SERVER>/aspnetapp:latest.
    10. Access http://localhost:8080 to confirm the container is running.
A Cloud Guru - Labs - Configure Service Principal Authentication for Azure Container Registry
Author
A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Provided environment for hands-on practice

We will provide the credentials and environment necessary for you to practice right within your browser.

Guided walkthrough

Follow along with the author’s guided walkthrough and build something new in your provided environment!

Did you know?

On average, you retain 75% more of your learning if you get time for practice.

Start learning by doing today

View Plans