Share via

How can we access on prem container registry through container apps

Nguyen 20 Reputation points
2024-05-31T15:50:14.53+00:00

We Want to access on prem container registry through container apps. It's signed with on prem PKI. Is there are ability to import root CA for subscription or Containers apps, so i can access container registry. Now it's giving me error regarding SSL certificate...

Azure Container Registry
Azure Container Registry
An Azure service that provides a registry of Docker and Open Container Initiative images.
465 questions
Accepted answer
  1. v-vvellanki-MSFT 4,920 Reputation points Microsoft Vendor
    2024-05-31T16:16:53.6366667+00:00

    Hi @Nguyen,

    Thanks for contacting Microsoft Q&A platform.

    To access an on-premises container registry from Azure Container Apps, you need to ensure secure and reliable connectivity between your on-premises environment and Azure. Here's a step-by-step guide to achieve this:

    1. First, you need to establish a secure network connection between your on-premises environment and Azure. This can be done using:
      • VPN Gateway: Establish a Site-to-Site VPN connection between your on-premises network and your Azure Virtual Network (VNet).
      • ExpressRoute: Use Azure ExpressRoute to create a private connection between your on-premises network and Azure.
    2. Ensure that your Azure Container Apps environment is part of a VNet that is connected to your on-premises network.
      1. Create a VNet: If you don't already have a VNet, create one.
      2. Add a Subnet for Container Apps: Ensure that your Container Apps environment is deployed in a subnet within this VNet.
      3. Establish Connectivity: Use either a VPN Gateway or ExpressRoute to connect your on-premises network to this VNet.
    3. Ensure your on-premises container registry is accessible from the VNet. This may involve configuring firewall rules or network security groups (NSGs) to allow traffic from the Azure VNet.
    4. When creating your Azure Container Apps environment, ensure it is associated with the VNet.
    5. You need to provide Azure Container Apps with credentials to pull images from your on-premises container registry.
    6. Deploy your container app ensuring it can access the on-premises container registry for pulling images.
    7. Ensure that your Container App can successfully pull images from the on-premises container registry. This might require troubleshooting network connectivity, DNS resolution, and firewall rules.

    Hope this helps you.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.