I just read the entire docs on securing a private Docker Registry. In addition to this, there seems to be a "Docker Trusted Registry", which is described as:
Docker Trusted Registry (DTR) lets you run and manage your own Docker image storage service, securely on your own infrastructure behind your company firewall.
Furthermore, the doc goes on to list a DTRs features:
- An image registry to store, manage, and collaborate on Docker images
- Pluggable storage drivers
- Configuration options to let you run DTR in your particular enterprise environment.
- Easy, transparent upgrades
- Logging, usage and system health metrics
But doesn't the "normal" Docker Registry give me these as well?!?
Are these two things really the same, or is DTR some sort of commercialized offering of a Docker Registry? Or something else? I'm so confused!
DTR is the paid support service for the registry - see https://hub.docker.com/enterprise/
Basically, they help you setup and will give you support down the road. It might have some niceties, otherwise you are left to your own to figure out how to run the registry.
New features in Docker Trusted Registry are:
- Control access and permissions by user or organisation
- Web UI to search and browse repos, manage users and setting
- Integrate to CI and CD systems to automate workflows
- LDAP/AD integration
- Flexible storage
- support User audit logs
- Soft Delete image tags
- Garbage collection
来源:https://stackoverflow.com/questions/32660206/docker-registry-vs-docker-trusted-registry