Azure Container Registry Entra permissions and role assignments overview

Scenario: Identities that need to pull images and validate supply chain artifacts such as developers, pipelines, and container orchestrators (for example, Azure Kubernetes Service node kubelet identity, Azure Container Apps, Azure Container Instances, Azure Machine Learning workspaces)

• Role: Container Registry Repository Reader
• Purpose: Grants data plane read-only access to pull images and artifacts, view tags, repositories, Open Container Initiative (OCI) referrers, and artifact streaming configurations. Doesn't include any control plane or write permissions. Doesn't grant repository catalog list permissions to list any repositories in the registry.
• ABAC support: This role supports optional Microsoft Entra ABAC conditions to scope role assignments to specific repositories in the registry.

Scenario: Identities such as CI/CD build pipelines and developers that build and push images, as well as manage image tags

• Role: Container Registry Repository Writer
• Permissions: Grants data plane access to push, pull, and update (but not delete) images and artifacts, read/manage tags, read/manage OCI referrers, and enable (but not disable) artifact streaming for repositories and images. Doesn't include any control plane permissions. Doesn't grant repository catalog list permissions to list any repositories in the registry.
• ABAC support: This role supports optional Microsoft Entra ABAC conditions to scope role assignments to specific repositories in the registry.

Scenario: Identities that need to delete images, artifacts, tags, and OCI referrers

• Role: Container Registry Repository Contributor
• Permissions: Grants permissions to read, write, update, and delete images and artifacts, read/manage/delete tags, read/manage/delete OCI referrers, and enable/disable artifact streaming for repositories and images. Doesn't include any control plane permissions. Doesn't grant repository catalog list permissions to list any repositories in the registry.
• ABAC support: This role supports optional Microsoft Entra ABAC conditions to scope role assignments to specific repositories in the registry.

Scenario: Identities that need to list all repositories in the registry

• Role: Container Registry Repository Catalog Lister
• Permissions: Grants data plane access to list all repositories in the registry, including through the {loginServerURL}/acr/v1/_catalog or {loginServerURL}/v2/_catalog registry API endpoints. Doesn't include any control plane permissions or permissions to push/pull images.
• ABAC support: This role doesn't support Microsoft Entra ABAC conditions. As such, this role assignment will grant permissions to list all repositories in the registry.

Scenario: Pipelines, identities, and developers that sign images

• For signing images with OCI referrers such as Notary Project:
  • Role: Container Registry Repository Writer
  • Permissions: Grants data plane access to push signatures in the form of OCI referrers attached to images and artifacts. Doesn't include any control plane permissions.
  • ABAC support: This role supports optional Microsoft Entra ABAC conditions to scope role assignments to specific repositories in the registry.
• For signing images with Docker Content Trust (DCT):
  • Signing images with DCT for ABAC-enabled registries is not supported.

Scenario: Pipelines, identities, and developers that need to create, update, or delete ACR registries

• Role: Container Registry Contributor and Data Access Configuration Administrator
• Permissions:
  • Grants control plane access to create, configure, manage, and delete registries, including:
    • configure registry SKUs
    • authentication access settings (admin user login credentials, anonymous pull, non-Microsoft Entra token-based repository permissions, and Microsoft Entra authentication-as-arm token audience),
    • high availability features (geo-replications, availability zones, and zone redundancy),
    • on-premises features (connected registries),
    • registry endpoints (dedicated data endpoints)
    • network access (private link and private endpoint settings, public network access, trusted services bypass, network firewall rules, and Virtual Network (VNET) service endpoints)
    • registry policies (retention policy, registry-wide quarantine enablement, soft-delete enablement, and data exfiltration export policy)
    • diagnostics and monitoring settings (diagnostic settings, logs, metrics, webhooks for registries and geo-replications, and Event Grid)
    • manage a registry's system-assigned managed identity
  • Note: this role grants permissions to delete the registry itself.
  • Note: this role doesn't include data plane operations (for example, image push/pull), role assignment capabilities, or ACR task.
  • Note: to manage a registry's user-assigned managed identity, the assignee must also have the Managed Identity Operator role.
• ABAC support: This role doesn't support Microsoft Entra ABAC conditions as the role is scoped to the registry level, granting permissions to manage control plane settings and configurations for the entire registry.

Scenario: Pipelines, infrastructure engineers, or control plane observability/monitoring tools that need to list registries and view registry configurations, but not access to registry images

• Role: Container Registry Configuration Reader and Data Access Configuration Reader
• Permissions: Read-only counterpart of the Container Registry Contributor and Data Access Configuration Administrator role. Grants control plane access to view and list registries and inspect registry configurations, but not modify them. Doesn't include data plane operations (for example, image push/pull) or role assignment capabilities.
• ABAC support: This role doesn't support Microsoft Entra ABAC conditions as the role is scoped to the registry level, granting permissions to read control plane settings and configurations for the entire registry.

Scenario: Vulnerability scanners and tools that need to audit registries and registry configurations, as well as access to registry images to scan them for vulnerabilities

• Roles: Container Registry Repository Reader, Container Registry Repository Catalog Lister, and Container Registry Configuration Reader and Data Access Configuration Reader
• Permissions: Grants control plane access to view and list ACR registries, as well as to audit registry configurations for audit and compliance. Also grants permissions to pull images, artifacts, and view tags to scan and analyze images for vulnerabilities.
• ABAC support: ACR recommends that vulnerability scanners and monitors have full data plane access to all repositories in the registry. As such, these roles should be assigned without Microsoft Entra ABAC conditions to grant role permissions without scoping them to specific repositories.

Scenario: Pipelines and identities that orchestrate ACR tasks

• Role: Container Registry Tasks Contributor
• Permissions: Manage ACR tasks, including task definitions and task runs, task agent pools, quick builds with az acr build and quick runs with az acr run, and task logs. Doesn't include data plane permissions or broader registry configuration
• Note: to fully manage task identities, the assignee must have the Managed Identity Operator role.
• ABAC support: This role doesn't support Microsoft Entra ABAC conditions as the role is scoped to the registry level, granting permissions to manage all ACR Tasks in the registry.

Scenario: Identities such as pipelines and developers that import images with az acr import

• Role: Container Registry Data Importer and Data Reader
• Permissions: Grants control plane access to trigger image imports using az acr import, and data plane access to validate import success (pull imported images and artifacts, view repository contents, list OCI referrers, and inspect imported tags). Doesn't allow pushing or modifying any content in the registry.
• ABAC support: This role doesn't support Microsoft Entra ABAC conditions as the role is scoped to the registry level, granting permissions to import images into any repository in the registry. It also grants permissions to read images in all repositories in the registry.

Scenario: Identities such as pipelines and developers that manage ACR transfer pipelines for transferring artifacts between registries using intermediary storage accounts across network, tenant, or air gap boundaries

• Role: Container Registry Transfer Pipeline Contributor
• Permissions: Grants control plane access to manage ACR import/export transfer pipelines and pipeline runs using intermediary storage accounts. Doesn't include data plane permissions, broader registry access, or permissions to manage other Azure resource types such as storage accounts or key vaults.
• ABAC support: This role doesn't support Microsoft Entra ABAC conditions as the role is scoped to the registry level, granting permissions to manage all ACR transfer pipelines in the registry.

Scenario: Management of quarantined images

• Roles: AcrQuarantineReader and AcrQuarantineWriter
• Permissions: Manage quarantined images in the registry, including listing and pulling quarantined images for further inspection, and modifying the quarantine status of images. Quarantined images are pushed images that can't be pulled or used until they're unquarantined.
• ABAC support: This role doesn't support Microsoft Entra ABAC conditions as the role is scoped to the registry level, granting permissions to manage all quarantined images in the registry.

Scenario: Developers or processes that configure registry auto-purge on ACR Tasks

• Role: Container Registry Tasks Contributor
• Permissions: Grants control plane permissions to manage auto-purge, which runs on ACR Tasks.
• ABAC support: This role doesn't support Microsoft Entra ABAC conditions as the role is scoped to the registry level, granting permissions to manage all ACR Tasks in the registry.

Scenario: Visual Studio Code Docker extension users

• Roles: Container Registry Repository Writer, Container Registry Tasks Contributor, and Container Registry Contributor and Data Access Configuration Administrator
• Permissions: Grants capabilities to browse registries, pull and push images, and build images using az acr build, supporting common developer workflows in Visual Studio Code.
• ABAC support: ACR recommends that Visual Studio Code users have full data plane access to all repositories in the registry. As such, these roles should be assigned without Microsoft Entra ABAC conditions to grant role permissions without scoping them to specific repositories.

Scenario: Identities that need to pull images and validate supply chain artifacts such as developers, pipelines, and container orchestrators (for example, Azure Kubernetes Service node kubelet identity, Azure Container Apps, Azure Container Instances, Azure Machine Learning workspaces)

• Role: AcrPull
• Purpose: Grants data plane read-only access to pull images and artifacts, view tags, repositories, Open Container Initiative (OCI) referrers, and artifact streaming configurations. Doesn't include any control plane or write permissions.

Scenario: Identities such as CI/CD build pipelines and developers that build and push images, as well as manage image tags

• Role: AcrPush
• Permissions: Grants data plane access to push and pull images and artifacts, manage tags, work with OCI referrers, and configure artifact streaming for repositories and images. Doesn't include any control plane permissions.

Scenario: Pipelines, identities, and developers that sign images

• For signing images with OCI referrers such as Notary Project:
  • Role: AcrPush
  • Permissions: Grants data plane access to push signatures in the form of OCI referrers attached to images and artifacts. Doesn't include any control plane permissions.
• For signing images with Docker Content Trust (DCT):
  • Role: AcrImageSigner
  • Permissions: Sign images in the registry with Docker Content Trust (DCT).
  • Note: Docker Content Trust is being deprecated.

Scenario: Pipelines, identities, and developers that need to create, update, or delete ACR registries

• Role: Container Registry Contributor and Data Access Configuration Administrator
• Permissions:
  • Grants control plane access to create, configure, manage, and delete registries, including:
    • configure registry SKUs
    • authentication access settings (admin user login credentials, anonymous pull, non-Microsoft Entra token-based repository permissions, and Microsoft Entra authentication-as-arm token audience),
    • high availability features (geo-replications, availability zones, and zone redundancy),
    • on-premises features (connected registries),
    • registry endpoints (dedicated data endpoints)
    • network access (private link and private endpoint settings, public network access, trusted services bypass, network firewall rules, and Virtual Network (VNET) service endpoints)
    • registry policies (retention policy, registry-wide quarantine enablement, soft-delete enablement, and data exfiltration export policy)
    • diagnostics and monitoring settings (diagnostic settings, logs, metrics, webhooks for registries and geo-replications, and Event Grid)
    • manage a registry's system-assigned managed identity
  • Note: this role grants permissions to delete the registry itself.
  • Note: this role doesn't include data plane operations (for example, image push/pull), role assignment capabilities, or ACR task.
  • Note: to manage a registry's user-assigned managed identity, the assignee must also have the Managed Identity Operator role.

Scenario: Pipelines, infrastructure engineers, or control plane observability/monitoring tools that need to list registries and view registry configurations, but not access to registry images

• Role: Container Registry Configuration Reader and Data Access Configuration Reader
• Permissions: Read-only counterpart of the Container Registry Contributor and Data Access Configuration Administrator role. Grants control plane access to view and list registries and inspect registry configurations, but not modify them. Doesn't include data plane operations (for example, image push/pull) or role assignment capabilities.

Scenario: Vulnerability scanners and tools that need to audit registries and registry configurations, as well as access to registry images to scan them for vulnerabilities

• Roles: AcrPull and Container Registry Configuration Reader and Data Access Configuration Reader
• Permissions: Grants control plane access to view and list ACR registries, as well as to audit registry configurations for audit and compliance. Also grants permissions to pull images, artifacts, and view tags to scan and analyze images for vulnerabilities.

Scenario: Pipelines and identities that orchestrate ACR tasks

• Role: Container Registry Tasks Contributor
• Permissions: Manage ACR tasks, including task definitions and task runs, task agent pools, quick builds with az acr build and quick runs with az acr run, and task logs. Doesn't include data plane permissions or broader registry configuration
• Note: to fully manage task identities, the assignee must have the Managed Identity Operator role.

Scenario: Identities such as pipelines and developers that import images with az acr import

• Role: Container Registry Data Importer and Data Reader
• Permissions: Grants control plane access to trigger image imports using az acr import, and data plane access to validate import success (pull imported images and artifacts, view repository contents, list OCI referrers, and inspect imported tags). Doesn't allow pushing or modifying any content in the registry.

Scenario: Identities such as pipelines and developers that manage ACR transfer pipelines for transferring artifacts between registries using intermediary storage accounts across network, tenant, or air gap boundaries

• Role: Container Registry Transfer Pipeline Contributor
• Permissions: Grants control plane access to manage ACR import/export transfer pipelines and pipeline runs using intermediary storage accounts. Doesn't include data plane permissions, broader registry access, or permissions to manage other Azure resource types such as storage accounts or key vaults.

Scenario: Management of quarantined images

• Roles: AcrQuarantineReader and AcrQuarantineWriter
• Permissions: Manage quarantined images in the registry, including listing and pulling quarantined images for further inspection, and modifying the quarantine status of images. Quarantined images are pushed images that can't be pulled or used until they're unquarantined.

Scenario: Deleting images, artifacts, tags, and OCI referrers

• Role: AcrDelete
• Permissions: Provides permissions to delete artifacts and tags across all repositories in the registry. This role doesn't grant permissions to delete the registry itself.

Scenario: Developers or processes that configure registry auto-purge on ACR Tasks

• Role: Container Registry Tasks Contributor
• Permissions: Grants control plane permissions to manage auto-purge, which runs on ACR Tasks.

Scenario: Visual Studio Code Docker extension users

• Roles: AcrPush, Container Registry Tasks Contributor, and Container Registry Contributor and Data Access Configuration Administrator
• Permissions: Grants capabilities to browse registries, pull and push images, and build images using az acr build, supporting common developer workflows in Visual Studio Code.