Private container registry

Benefits of Managed Private Registry

Full interoperability

Managed Private Registry is built on open-source solutions, such as Docker and the CNCF Harbor project, to guarantee interoperability. It supports all OCI (Open Container Initiative) images and Helm charts and can work with any containerisation platform or orchestration tool, such as the Kubernetes ecosystem.

Maximum security

Secure access for your teams with Role-Based Access Control (RBAC) and ensure the integrity of your images’ sources with Content Trust. You can also leverage Automatic Vulnerability Analysis to protect your private container registry from common risks. All this is backed up with robust SLAs.

Predictable pricing

The Managed Private Registry service offers a range of pay-as-you-go plans to suit your specific needs. These include the amount of stored data, concurrent connections to your private container registry, and SLAs. Inbound/outbound traffic and maintenance are included, so you know exactly what you’ll pay at the end of the month.

Health data hosting compliance

Our cloud infrastructures and services are ISO/IEC 27001, 27017, 27018 and 27701 certified. These certifications ensure the presence of an information security management system (ISMS) for managing risks and ensuring business continuity, as well as a privacy information management system (PIMS). Thanks to our health data hosting compliance, you can also host healthcare data securely.

Technical features

Helm chart and container images

If you already use Kubernetes, or any other container management solution, you can continue managing your images using tools and processes you know and trust.

Dedicated Harbor interface or Harbor API

Managed Private Registry offers effortless configuration management, through either an intuitive graphic interface, or the Docker registry API.

RBAC and namespaces

Offer your teams secure access to images, with the ability to configure individual rights, delivering both security and high availability.

Robot accounts

Streamline and automate your processes, via the issue of a token with specific rights.

Logging

Automated logging provides complete traceability, to fulfil even the most stringent compliance requirements.

Content Trust

Ensures that your images have been automatically validated by Cosign, so you can always trust their sources, without the need to manually authenticate each of them.

Vulnerability scanning

Automatically monitor your risk exposure, with periodic checks for common vulnerabilities.

Replication

Synchronise your images across multiple container registries, in line with your management policies, for stress-free versioning.

Automated deletion

Automate the removal of unused images, to make more efficient use of your storage and simplify lifecycle management.

Ready to get started?

Create an account and launch your services in minutes

Get £175 in free credit to launch your first Public Cloud project

Get started now

Use cases

Easily set up your CI/CD

Managed Private Registry facilitates the entire integration with your CI/CD via API. Accelerate your software releases, from development to production, while OVHcloud manages your private container registry, ensuring the ready availability of images and a smooth, stress-free application deployment process.

Improve team collaboration

Enable the efficient and secure delivery of images, everywhere you operate. Depending on their rights, developers access approved images, reducing the risk of obsolescence. Managed Private Registry also enables multiple connections to your container registry to take place simultaneously, further enhancing the agility of your teams.

Streamline the management of images

Manage your private storage configuration via a single, dedicated Harbor interface, or through the Harbor API. This allows you to ensure the integrity of your images, by synchronising multiple container registries and automating the removal of unused images.

Other products

Managed Kubernetes Services

Free yourself from the hassle of setting up and maintaining your Kubernetes clusters, and deploy your applications quickly with the benchmark container orchestration solution.

Managed Rancher Service

New

Manage your Kubernetes clusters in one place with a centralised, managed administration tool.

Load Balancer

Dynamically distribute your traffic to optimise your application’s scalability.

FAQ

What is a private container registry?

A private container registry is a storage and distribution system for container images i.e. files that include all the code, libraries and other resources required to run an application inside a containerised environment. Being accessible only to authorised users, a private container registry is a secure space for storing container images. It enables organisations to manage and control their container images easily, as well as offering simple integration with existing continuous integration/continuous deployment (CI/CD) workflows for seamless development, testing, and deployment of applications.

What is Managed Private Registry?

The Managed Private Registry service is a managed solution provided by OVHcloud. It offers a highly secure and compliant environment for storing container images and Helm charts, with predictable pricing and a range of security, automation, and storage-specific features. The best part is that this is a fully managed service, so we’ll setup, maintain and administer your private registry, leaving you free to focus on other projects.

How do I host a private container registry?

Hosting a private container registry requires a secure environment for storing your container images. To do this, you can either use a service from a cloud provider, install third-party software on your own infrastructure, or create your own customised solution.

Using a cloud provider’s service - such as OVHcloud’s Managed Private Registry - is the simplest way to host a private container registry, as it takes the stress out of maintaining your private container registry, being a fully managed service with high security, predictable pricing, and a range of features.

If you choose to adopt third-party software on your own infrastructure instead, some popular options include Harbor, JFrog Artifactory, and Sonatype Nexus. If you decide instead to build your own custom solution, there are a range of simple guides on the internet to help you set this up.

What is the difference between a public and private registry in Docker?

The main difference is around access, security, and compliance. A public registry in Docker can be accessed by anyone, however, a private registry in Docker can only be accessed by specific users. This makes a private registry much more secure and able to comply with industry regulations. Other differences are that public registries are free to use, whereas private registries have associated costs, and a private registry is much easier to manage and integrate with existing workflows.

Is Docker Private Registry free?

Yes, Docker Registry software is open-source and therefore free to use. However, there are costs associated with running Docker Registry on your own, such as infrastructure, security, maintenance, scalability, and backup costs. To minimise these overheads, it is much easier to use a service from a cloud provider, such as OVHcloud’s Managed Private Registry. Although you need to pay for these services, they eliminate the burden and cost of having to manage and maintain the container registry infrastructure yourself.