Azure Container Registry (ACR): A Complete Guide

A Comprehensive and Practical Course: Containers, Automation, Networking, Security, Monitoring, HA, AKS, and others

What you will learn

Containerization, Docker and registries basics

What Azure Container Registry (ACR) is, how to create one

Basic operations like import, push, pull

How to automate container builds, pushes and more during commit source code with the help of ACR Tasks and ACR Webhooks

How to properly delete, recover and lock images and repositories

Authentication methods and the proper roles needed

How to integrate ACR with other Azure services

Networking and security considerations like restricting access, private connection, data exfiltration, access from behind a firewall, scanning, Content Trust

How to monitor and troubleshoot ACR

How to obtain resiliency, high availability, performance, better pull speeds, overcome public registries rate limiting and more

Description

In the world of cloud computing, containers have emerged as a game-changer, enabling software developers to create, test, and deploy applications seamlessly. But with this comes the need for a centralized location to store and manage these container images, which is where Azure Container Registry (ACR) comes into play.

Azure Container Registry (ACR) is a private, managed, and secure registry service that allows users to store and manage container images for use with Azure services like Azure Kubernetes Service (AKS) and more, or even non-Azure services or on-premises.

This course, “Azure Container Registry (ACR) Made Easy,” is your comprehensive guide to understanding and managing ACR. Throughout the course, we have a lot of practice/hands-on sessions to ensure that you can apply the concepts you learned in real-world situations. Whether you are new to container management or an experienced professional, this course will provide you with the expertise needed to manage and store containers using ACR.

We will start by exploring containers, images, and registries, followed by an in-depth explanation of ACR’s basics, including its tiers, limits, and pricing. You will then learn how to create an ACR, import, pull, and push images, work with agent pools, and more.

Get Instant Notification of New Courses on our Telegram channel.

Note➛ Make sure your 𝐔𝐝𝐞𝐦𝐲 cart has only this course you're going to enroll it now, Remove all other courses from the 𝐔𝐝𝐞𝐦𝐲 cart before Enrolling!

The course then moves on to more advanced topics, such as automating with all kinds of ACR Tasks and Webhooks, deleting, recovering, and locking ACR images and repositories. We will also delve into access control and all the authentication options available.

Next, we will look at integrating ACR with other Azure services, such as Azure Kubernetes Service (AKS), Azure Container Instances (ACI), and Azure Web App for Containers. You will also learn about networking and security, including how to restrict public access, use trusted services, connect via a private endpoint or from behind a firewall, scan images with Microsoft Defender, implement governance and security with Azure Policy, or use Content Trust.

In the monitoring and troubleshooting section, you will learn the basics of troubleshooting, how to monitor ACR, and how to create alerts for metrics and logs. Finally, we will cover high availability and performance, including moving an ACR to another region, availability zones, geo-replication, Project Teleport, and cache for ACR.

By the end of this course, you will have gained a thorough understanding of ACR and the skills to create and manage your own container registry with ease. Whether you are a software developer, a DevOps engineer, or an IT professional, this course will equip you with the knowledge and skills to take your container management to the next level.

English

language

Content

Course introduction

Introduction about instructor and course

Good to know / Recommended background

Connect with me

Understanding containers, images and registries

What is a container and how is it different from a VM?

Microservices architecture

Install Docker and Azure CLI on an Ubuntu VM and other considerations

What are Docker, Dockerfile and Docker Hub?

Create our 1st container (web app), push it to Docker Hub and run it

Create our 2nd container (troubleshooting app), push it to Docker Hub and run it

Understand why we need a container registry, like Azure Container Registry (ACR)

Understand registry and image related terminologies

Starting with Azure Container Registry (ACR)

What is Azure Container Registry (ACR)?

Defining storage, throughput and throttling in ACR

Understand ACR limits and tier comparison

Azure free account and ACR pricing

Learn and explore Microsoft Artifact Registry (MAR/MCR)

Important notes about ACR support policy and ACR Roadmap

Let’s create and explore our first Azure Container Registry (ACR)

Import images to ACR and explore them

How to set a default registry to simplify “az acr” commands

Understand and use AAD individual login to authenticate to ACR

Understand and use the admin user in ACR

Push and pull container images to/from ACR

Push and pull OCI artifacts to/from ACR

Push and pull Helm charts to/from ACR

Starting with ACR Tasks: Understand and use “az acr build” and “az acr run”

Use Azure Cloud Shell with ACR

Send events from ACR to Event Grid and view them on a prebuilt Azure WebApp

Starting with Azure Container Registry (ACR) – Quiz

Automate with Tasks and Webhooks in ACR

A few ACR Task related considerations about variables, aliases and YAMLs

Automate container image builds in the cloud when you commit source code

Automate ACI deployments and updates with ACR Task, ACR Webhook and Logic Apps

Create a multi-step task using a YAML file

Automate container image builds when a base image is updated

Understand and run an ACR timer-triggered task based on a schedule

Understand dedicated agent pools and run an ACR task there

Automate with Tasks and Webhooks in ACR – Quiz

Delete, recover and lock ACR images and repositories

Basic delete options

Delete digests by timestamp using a script

Prevent delete, write, read, and list by locking images and repositories

Enable soft delete policy and recover deleted artifacts

Use “acr purge” command to delete images on-demand or on a schedule

Set a retention policy for untagged manifests

Delete, recover and lock ACR images and repositories – Quiz

Authentication and access control in ACR

Understand RBAC roles and permissions related to ACR

Authentication options overview

Reminder about authentication with individual AD identity and admin user

Authenticate with AD service principal

Authenticate with managed identity and compare it with AD service principal

Tokens and scope maps

Make your content publicly available with Anonymous / Unauthenticated pull

ACR task authentication considerations and cross-registry authentication demo

Authentication and access control in ACR – Quiz

Integrate ACR with other Azure services (AKS, ACI, Web App)

Learn Kubernetes basics and create an Azure Kubernetes Service (AKS) cluster

How the Azure Kubernetes Service (AKS) – ACR integration works?

Integrate AKS and ACR – Azure/RBAC method

Integrate AKS and ACR – Kubernetes/pull secret method

Deploy to ACI (Azure Container Instances) using admin user

Deploy to ACI using an AAD service principal

Deploy to ACI using an AAD service principal with credentials in Key Vault

Deploy to ACI using a Managed Identity

Deploy to Azure App Service Web App for Containers using admin user

Integrate ACR with other Azure services (AKS, ACI, Web App) – Quiz

Networking and security in ACR

Restrict public access to ACR

Trusted services in ACR

Understand how to securely connect to ACR via a private connection

Configure secure connectivity to ACR via a private connection

Service endpoint in ACR

How devices behind a firewall can access ACR and about dedicated data endpoints

Configure AKS behind Azure Firewall to access ACR

Scan for vulnerabilities and get recommendations with Microsoft Defender

Implement policies for ACR with Azure Policy

Disable export of artifacts from ACR

Understand Content Trust, related terms and ACR particularities

Practice Content Trust in ACR

Networking and security in ACR – Quiz

Monitor and troubleshoot ACR

“az acr check-health” command

Activity logs

Metrics explorer in ACR

Create a diagnostic settings and explore logs

Understand Alerts in Azure

Create a metrics-based alert

Create a log-based alert

Monitor and troubleshoot ACR – Quiz

High availability and performance in ACR

Manually move an ACR to another region

Availability Zones in ACR

Understand geo-replication in ACR

Practice and test geo-replication in ACR

Project Teleport

Understand Cache for ACR

Get started with Cache for ACR

Use Cache for ACR with authentication

High availability, reliability, and performance in ACR – Quiz

Enroll for Free