[!NOTE]

Image Access Management is available to Docker Business customers only.

Image Access Management gives administrators control over which types of images, such as Docker Official Images, Docker Verified Publisher Images, or community images, their developers can pull from Docker Hub.

For example, a developer, who is part of an organization, building a new containerized application could accidentally use an untrusted, community image as a component of their application. This image could be malicious and pose a security risk to the company. Using Image Access Management, the organization owner can ensure that the developer can only access trusted content like Docker Official Images, Docker Verified Publisher Images, or the organization’s own images, preventing such a risk.

Prerequisites#

You need to enforce sign-in. For Image Access Management to take effect, Docker Desktop users must authenticate to your organization. Enforcing sign-in ensures that your Docker Desktop developers always authenticate to your organization, even though they can authenticate without it and the feature will take effect. Enforcing sign-in guarantees the feature always takes effect.

Configure Image Access Management permissions#

{ { < tabs > } } { { < tab name="Docker Hub" > } }

{ { % admin-image-access product="hub" \%}}

{ { < /tab > } } { { < tab name="Admin Console" > } }

{ { < include "admin-early-access.md" > } }

{ { % admin-image-access product="admin" \%}}

{ { < /tab > } } { { < /tabs > } }

More resources#