As a vSphere administrator, you can enable the Harbor Registry that is embedded with vSphere with Tanzu. You can push and pull container images from the registry as well as deploy containers using these images.
Once the Harbor Registry is enabled, every namespace on the Supervisor Cluster has a matching project with the same name as the private image registry. Every user or group that has edit or view permission to a namespace becomes a corresponding role member on the matching project with the same name in the private image registry. The lifecycle of projects and members of the private image registry is automatically managed and is linked to the lifecycle of namespaces and user or group permissions in namespaces.
- In the vSphere Client, browse to the vCenter cluster where Workload Management is enabled.
- Select Configure.
- Under Namespaces, select Image Registry.
- Click Enable Harbor.
- Select the storage policy for placement of container images.
A private image registry becomes enabled after a few minutes. A special namespace is created for that instance of the private image registry. You cannot perform any operations on that namespace, it is read only for vSphere users.