Project Harbor is an enterprise-class registry server that stores and distributes Docker images. Harbor extends the open source Docker Distribution by adding the functionalities usually required by an enterprise, such as security, identity and management. As an enterprise private registry, Harbor offers better performance and security. Having a registry closer to the build and run environment improves the image transfer efficiency. Harbor supports the setup of multiple registries and has images replicated between them. With Harbor, the images are stored within the private registry, keeping the bits and intellectual properties behind the company firewall. In addition, Harbor offers advanced security features, such as user management, access control and activity auditing.
Role based access control: Users and repositories are organized via 'projects' and a user can have different permission for images under a project.
Image replication: Images can be replicated (synchronized) between multiple registry instances. Great for load balancing, high availability, hybrid and multi-cloud scenarios.
Graphical user portal: User can easily browse, search repositories and manage projects.
AD/LDAP support: Harbor integrates with existing enterprise AD/LDAP for user authentication and management.
Auditing: All the operations to the repositories are tracked.
Internationalization: Already localized for English, Chinese, German, Japanese and Russian. More languages can be added.
RESTful API: RESTful APIs for most administrative operations, easy to integrate with external systems.
Easy deployment: docker compose and offline installer.
System requirements: Harbor only works with docker 1.10.0+ and docker-compose 1.6.0+.
Install via docker compose
On an Internet connected host, Harbor can be easily installed via docker-compose:
Get the source code:
$ git clone https://github.com/vmware/harbor
Edit the file Deploy/harbor.cfg, make necessary configuration changes such as hostname, admin password and mail server. Refer to Installation and Configuration Guide for more info.
Install Harbor with the following commands. Note that the docker-compose process can take a while.
For those who do not want to clone the source, or need to install Harbor on a server not connected to the Internet, there is a pre-built installation package available. For details on how to download and use the installation package, please refer to Installation and Configuration Guide.
If everything worked properly, you should be able to open a browser to visit the admin portal at http://reg.yourdomain.com. Note that the default administrator username/password are admin/Harbor12345.
Log in to the admin portal and create a new project, e.g. myproject. You can then use docker commands to login and push images (by default, the registry server listens on port 80):