How can we improve the Azure Container Registry?

Make Service Principals Easier To Configure for Headless Scenarios

az acr login enables individual identity when working locally. However, headless scenarios like Continuous Build and Deployment solutions need authentication, that isn't tied to a person. Azure Active Directory provides Service Principals for just this scenario. However, Service Principals are difficult to configure and manage. ACR would make it easier to configure and manage service principals.

13 votes
Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)

We’ll send you updates on this idea

Steve Lasker [ MSFT] shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

Based on all the great feedback, we’re adding token based authentication to the repo-based permissions capability. Customers can configure time based tokens, for access to specific repos, with RBAC.
We don’t have an ETA yet, but we expect to be in preview by this summer.

2 comments

Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
Submitting...
  • Tyler commented  ·   ·  Flag as inappropriate

    Also, Service Principal credentials don't work with the Helm Repository apis, is this coming?

  • Amanda Debler commented  ·   ·  Flag as inappropriate

    Voting for this one, with an addendum: Service Principals authenticated with certificates in Azure Keyvault.

Feedback and Knowledge Base