Manage access tokens

Estimated reading time: 2 minutes

This topic applies to Docker Enterprise.

The Docker Enterprise platform business, including products, customers, and employees, has been acquired by Mirantis, inc., effective 13-November-2019. For more information on the acquisition and how it may affect you and your business, refer to the Docker Enterprise Customer FAQ.

Docker Trusted Registry lets you create and distribute access tokens to enable programmatic access to DTR. Access tokens are linked to a particular user account and duplicate whatever permissions that account has at the time of use. If the account changes permissions, so will the token.

Access tokens are useful in cases such as building integrations since you can issue multiple tokens – one for each integration – and revoke them at any time.

Create an access token

  1. To create an access token for the first time, log in to https://<dtr-url> with your UCP credentials.

  2. Expand your Profile from the left navigation pane and select Profile > Access Tokens.

    Token list

  3. Add a description for your token. Use something that indicates where the token is going to be used, or set a purpose for the token. Administrators can also create tokens for other users.

Create token

Modify an access token

Once the token is created, you will not be able to see it again. You do have the option to rename, deactivate, or delete the token as needed. You can delete the token by selecting it and clicking Delete, or you can click View Details:

Create token

Use the access token

You can use an access token anywhere that requires your DTR password. As an example you can pass your access token to the --password or -p option when logging in from your Docker CLI client:

docker login --username <username> --password <token>

To use the DTR API to list the repositories your user has access to:

curl --silent --insecure --user <username>:<token>
dtr, security, access tokens