Amazon Elastic Container Registry (Amazon ECR)

Amazon Elastic Container Registry Cheat Sheet

  • A managed AWS Docker registry service.
  • Amazon ECR is a regional service.


  • ECR supports Docker Registry HTTP API V2 allowing you to use Docker CLI commands or your preferred Docker tools in maintaining your existing development workflow.
  • ECR stores both the containers you create and any container software you buy through AWS Marketplace.
  • Tutorials dojo strip
  • ECR stores your container images in Amazon S3.
  • ECR supports the ability to define and organize repositories in your registry using namespaces.
  • You can transfer your container images to and from Amazon ECR via HTTPS.


  • Registry
    • A registry is provided to each AWS account; you can create image repositories in your registry and store images in them.
    • The URL for your default registry is
    • You must be authenticated before you can use your registry.
  • Authorization token
    • Your Docker client needs to authenticate to ECR registries as an AWS user before it can push and pull images. The AWS CLI get-login command provides you with authentication credentials to pass to Docker.
  • Repository
    • An image repository contains your Docker images.
    • ECR uses resource-based permissions to let you specify who has access to a repository and what actions they can perform on it.
    • ECR lifecycle policies enable you to specify the lifecycle management of images in a repository.
  • Repository policy
    • You can control access to your repositories and the images within them with repository policies.
  • Image
    • You can push and pull Docker images to your repositories. You can use these images locally on your development system, or you can use them in ECS task definitions.
    • You can replicate images in your private repositories across AWS regions.

Amazon Elastic Container Registry Security

  • By default, IAM users don’t have permission to create or modify Amazon ECR resources, or perform tasks using the Amazon ECR API.
  • Use IAM policies to grant or deny permission to use ECR resources and operations.
  • ECR partially supports resource-level permissions.
  • ECR supports the use of customer master keys (CMK) managed by AWS Key Management Service (KMS) to encrypt container images stored in your ECR repositories.

Amazon Elastic Container Registry Pricing

  • You pay only for the amount of data you store in your repositories and data transferred to the Internet.

Amazon Elastic Container Registry  Cheat Sheet References:

Tutorials Dojo portal

FREE AWS Exam Readiness Digital Courses

Enroll Now – Our Azure Certification Exam Reviewers

azure reviewers tutorials dojo

Enroll Now – Our Google Cloud Certification Exam Reviewers

Tutorials Dojo Exam Study Guide eBooks

tutorials dojo study guide eBook

Subscribe to our YouTube Channel

Tutorials Dojo YouTube Channel

FREE Intro to Cloud Computing for Beginners

FREE AWS, Azure, GCP Practice Test Samplers

Browse Other Courses

Generic Category (English)300x250

Recent Posts

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, YouTube, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!

View Our AWS, Azure, and GCP Exam Reviewers Check out our FREE courses

Our Community

passing rate
Around 95-98% of our students pass the AWS Certification exams after training with our courses.
Over 200k enrollees choose Tutorials Dojo in preparing for their AWS Certification exams.
Our courses are highly rated by our enrollees from all over the world.

What our students say about us?