Skip to main content

Creating a Personal Access Token

  1. Sign in to the Azure Portal, then find and select your Azure Container Registry instance.
  2. Within your ACR instance, go to the Access keys section under Settings on the left-hand menu.
  3. Under Access keys, enable Admin user if it’s not already enabled. Then, click on Add token to start creating a new personal access token.
  4. Provide a name for your token, choose the appropriate scope (e.g., repository), and ensure the token has read permissions. Set an expiry date if needed.
  5. After configuring the token, click Create. Once the token is created, you will be provided with the username and password/token. Make sure to copy and securely store these details, as they will not be shown again.

Add the container registry credentials to Start Left

  1. Sign in to the Start Left Platform, then navigate to the Data Sources page.
  2. Click on the Azure Container Registry card to open the integration page.
  3. Enter the following details:
    • Registry URL: The URL of your Azure Container Registry instance.
    • Username: The username provided by the personal access token.
    • Access Token: The password/token provided by the personal access token creation step above.
  4. Click Next.
  5. Add the container image [namespace]/[image name]:[tag] you want to scan.
  6. Click Save to add the integration.
The selected container images will now appear as Unmanaged Assets. This is different from repos, for example, where all repos from the organization are auto-discovered. The containers can then be mapped to product(s). Once mapped, a scan will automatically be triggered. The results will be posted to the asset and product once the scan has completed.