Manage Image Registry

CCR

  • Enterprise Edition API Reference
    • Appendix
    • Common Headers and Error Code
    • Enterprise Edition Instance APIs
    • Helm Chart Management Interface
    • Image access control APIs
    • Image Access Credential APIs
    • Image API
    • Image Migration APIs
    • Image On-demand Loading APIs
    • Image Registry APIs
    • Image Synchronization APIs
    • Namespace APIs
    • Overview
    • Service domain
    • Trigger APIs
  • Enterprise Edition Go-SDK
    • Enterprise Edition Instance
    • Initialization
    • Install the SDK Package
    • Overview
  • Enterprise Edition Operation Guide
    • Access configuration
      • Configure Access credentials
      • Configure Custom Endpoint
      • Configure IAM Access Control
      • Configure IAM Tag Permission Policy
      • Configure Robot Account
      • Network Access Control
        • Configure public network access control
        • Configure virtual private cloud access control
        • Network Access Control Overview
    • Container DevOps
      • Manage Trigger
    • Create Enterprise Edition Instance
    • Distribution Management
      • Cross-Instance Synchronization of Image
      • On-Demand Loading of Container Image
      • Using P2P Acceleration in CCE Clusters
    • Event notification
      • Configure Event Notification Alert
      • Image Push Failure Error Code and Handling Methods
    • Image Build
      • Build Based on Existing Image
    • Image Cleanup
      • Clean BOS Storage Space
      • Delete image version
      • Version Retention
    • Image Migration
      • Migrate External Image to Enterprise Edition Instance
    • Image security
      • Immutable image version
      • Security Scanning Container Image
    • Manage Namespace
    • OCI Artifact Management
      • Manage Helm Chart
      • Manage Image Registry
      • OCI Artifact Management Overview
  • Function Release Records
  • Personal Edition API Reference
    • Helm API
    • Image API
    • Image Migration APIs
    • Image Version and Image Version Scanning Interface
    • Namespace APIs
    • Overview
    • User APIs
  • Personal Edition Documentation Set
    • Account Permission Management
    • Cloud Container Engine (CCE) migration to CCR
    • Container Image Service Basic Operations
    • How to Perform Image Scanning
    • How to Upload Helm Chart
    • How to use the DockerHub image accelerator
  • Product Announcement
    • CCR Enterprise Edition Pricing Announcement
    • CCR Enterprise Edition Public Beta Announcement
    • CCR Personal Edition Announcement on Closing New Entry
    • CCR Personal Edition Announcement on Disabling Image Scanning Function
  • Product introduction
    • Core concepts
    • Enterprise Edition Different Specifications Differentiation Description
    • Key functions
    • Product advantages
    • Product Introduction
  • Product pricing
    • Billing overview
  • Quick Start
    • Enterprise Edition Quick Start
    • How to Build Docker Image
  • Service Level Agreement (SLA)
    • CCR Enterprise Edition Service Level Agreement
All documents
menu
No results found, please re-enter

CCR

  • Enterprise Edition API Reference
    • Appendix
    • Common Headers and Error Code
    • Enterprise Edition Instance APIs
    • Helm Chart Management Interface
    • Image access control APIs
    • Image Access Credential APIs
    • Image API
    • Image Migration APIs
    • Image On-demand Loading APIs
    • Image Registry APIs
    • Image Synchronization APIs
    • Namespace APIs
    • Overview
    • Service domain
    • Trigger APIs
  • Enterprise Edition Go-SDK
    • Enterprise Edition Instance
    • Initialization
    • Install the SDK Package
    • Overview
  • Enterprise Edition Operation Guide
    • Access configuration
      • Configure Access credentials
      • Configure Custom Endpoint
      • Configure IAM Access Control
      • Configure IAM Tag Permission Policy
      • Configure Robot Account
      • Network Access Control
        • Configure public network access control
        • Configure virtual private cloud access control
        • Network Access Control Overview
    • Container DevOps
      • Manage Trigger
    • Create Enterprise Edition Instance
    • Distribution Management
      • Cross-Instance Synchronization of Image
      • On-Demand Loading of Container Image
      • Using P2P Acceleration in CCE Clusters
    • Event notification
      • Configure Event Notification Alert
      • Image Push Failure Error Code and Handling Methods
    • Image Build
      • Build Based on Existing Image
    • Image Cleanup
      • Clean BOS Storage Space
      • Delete image version
      • Version Retention
    • Image Migration
      • Migrate External Image to Enterprise Edition Instance
    • Image security
      • Immutable image version
      • Security Scanning Container Image
    • Manage Namespace
    • OCI Artifact Management
      • Manage Helm Chart
      • Manage Image Registry
      • OCI Artifact Management Overview
  • Function Release Records
  • Personal Edition API Reference
    • Helm API
    • Image API
    • Image Migration APIs
    • Image Version and Image Version Scanning Interface
    • Namespace APIs
    • Overview
    • User APIs
  • Personal Edition Documentation Set
    • Account Permission Management
    • Cloud Container Engine (CCE) migration to CCR
    • Container Image Service Basic Operations
    • How to Perform Image Scanning
    • How to Upload Helm Chart
    • How to use the DockerHub image accelerator
  • Product Announcement
    • CCR Enterprise Edition Pricing Announcement
    • CCR Enterprise Edition Public Beta Announcement
    • CCR Personal Edition Announcement on Closing New Entry
    • CCR Personal Edition Announcement on Disabling Image Scanning Function
  • Product introduction
    • Core concepts
    • Enterprise Edition Different Specifications Differentiation Description
    • Key functions
    • Product advantages
    • Product Introduction
  • Product pricing
    • Billing overview
  • Quick Start
    • Enterprise Edition Quick Start
    • How to Build Docker Image
  • Service Level Agreement (SLA)
    • CCR Enterprise Edition Service Level Agreement
  • Document center
  • arrow
  • CCR
  • arrow
  • Enterprise Edition Operation Guide
  • arrow
  • OCI Artifact Management
  • arrow
  • Manage Image Registry
Table of contents on this page
  • Prerequisites
  • Operation steps
  • Push container image to the image registry
  • Image registry-related operations
  • Manage image version

Manage Image Registry

Updated at:2025-11-03

The enterprise edition of the Cloud Container Registry (CCR) image registry can be used to manage Docker images and other OCI artifacts. It supports the management of multiple container image versions.

Image registry belongs to namespace and inherits attributes such as access type and vulnerability scan triggering method from namespace. For details, please refer to [Manage Namespace](CCR/Enterprise Edition Operation Guide/Manage Namespace.md).

Prerequisites

  • Successfully [Create Enterprise Edition Instance](CCR/Enterprise Edition Operation Guide/Create Enterprise Edition Instance.md).
  • Each instance must contain at least one namespace. For detailed information, refer to [Manage Namespace](CCR/Enterprise Edition Operation Guide/Manage Namespace.md).

Operation steps

Push container image to the image registry

Direct creation of image registry on the console is not supported currently. You can specify an image registry when pushing images via the docker client. For details, refer to the following contents:

Step 1: Sign in to the enterprise edition instance

Plain Text 
1    >$ sudo docker login --username=[username] ccr-xxxx-pub.cnc.xx.baidubce.com

Run the command above and enter the password to log in.

Description:

  • Username and login password correspond to the username and fixed or temporary password in the [Access Credentials] on the console.
  • The address ccr-xxxx-pub.cnc.xx.baidubce.com in the command line should be replaced with the endpoint of the enterprise edition instance.
  • Select either a public domain name or a virtual private cloud domain name based on your actual environment. This information can be found under [Access Control] in the console.

Step 2: Push container image

Plain Text 
1    >$ sudo docker tag [imageID] ccr-xxxx-pub.cnc.xx.baidubce.com/[namespace]/[imageName]:[image version No.]
2 >$ sudo docker push ccr-xxxx-pub.cnc.xx.baidubce.com/[namespace]/[imageName]:[image version No.]

Run the command above to push the container image to the designated image registry.

Description:

  • Fill in imageID and image version based on the information of the image to be pushed.
  • namespace refers to the name of the namespace to which the image will be pushed.
  • imageName is the name of the image registry.
  • The address ccr-xxxx-pub.cnc.xx.baidubce.com in the command line is replaced with the endpoint of the enterprise edition instance.
  • Select either a public domain name or a virtual private cloud domain name based on your actual environment. This information can be found under [Access Control] in the console.

Image registry-related operations

You can perform the following operations on the Instance > Image Registry list page to manage your image registry.

View image registry details

Click the name of the selected image registry to access its sub-page, where you can view basic information and manage image versions.

Delete image registry

Click Delete corresponding to the image registry, and then click OK in the deletion confirmation box to delete the image registry. Batch deletion of multiple image registries is also supported.

Note: Once the image registry is deleted, all its data will be permanently erased and cannot be recovered. Proceed with caution.

Manage image version

Click the name of the specified image registry to enter its sub-page. Select Version Management in the left navigation bar to manage image versions or other OCI artifacts, perform security scan, view layer information, etc.

Pull command

Click Pull Command in the operation column at the right of the specified image version to copy its pull command.

Security scan

Click Security Scan in the operation column at the right of the specified image version. Then, the system will redirect to an independent Security Scan page where you can perform vulnerability scan for the image. After scanning, you can view detailed vulnerability information.

Layer information

Click Layer Information in the operation column at the right of the specified image version. Then, a drawer box will pop up where you can view the building history of the image.

Delete

Click Delete in the operation column at the right of the specified image version, and then click OK in the deletion confirmation box to delete the image version. Batch deletion of multiple image versions is also supported.

Previous
Manage Helm Chart
Next
OCI Artifact Management Overview