Private registry settings - Amazon ECR
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Private registry settings

Amazon ECR uses private registry settings to configure features at the registry level. The private registry settings are configured separately for each Region. You can use private registry settings to configure the following features.

  • Registry permissions—You can use your registry permissions policy to grant permissions to an Amazon principal to the replication and pull through cache features. For more information, see Private registry permissions.

  • Pull through cache rules—You can create pull through cache rules to cache images from an external public registry in your Amazon ECR private registry. For more information, see Using pull through cache rules.

  • Replication—You can configure repositories for either cross-Region or cross-account replication. For more information, see Private image replication

  • Scanning configuration—By default, your registry is enabled for basic scanning. You may enable enhanced scanning which provides an automated, continuous scanning mode that scans for both operating system and programming language package vulnerabilities. For more information, see Image scanning.