Scan images in Azure Container Registry (ACR)

Open Console, and go to 
Defend > Vulnerabilities > Registry
.

Click
Add registry
.
In the
Add New Registry Setting Specification
dialog, enter the following values:
In the
Version
drop-down list, select 
Azure Container Registry
.
In the
Registry
field, enter the Fully Qualified Domain Name (FQDN) for the registry’s ACR login server.
The format for the FQDN is
<REGISTRY_NAME>.azurecr.io
, where
<REGISTRY_NAME>
is a unique value specified when the registry was created. Example:
example.azurecr.io
.
In the
Repository
field, enter the name of the repository to scan. Example: 
library/alpine
.
In the
Tag
field, enter an image tag. Leave this field blank to scan all images, regardless of their tag.
In the
Credential
field, configure how Prisma Cloud authenticates with ACR.
Select a credential from the drop-down list. If there are no credentials in the list, click 
Add new
, and create an Azure credential.
In the
OS type
field, specify whether the repo holds
Linux
or
Windows
images.

In
Scanners scope
, specify the collections of defenders to use for the scan.
Console selects the available Defenders from the scope to execute the scan job according to the
Number of scanners
setting. For more information, see deployment patterns.
In
Number of scanners
, enter the number of Defenders across which scan jobs can be distributed.
In
Cap
, limit the number of images to scan.
Set
Cap
to
5
to scan the five most recent images, or enter a different value to increase or decrease the limit. Set
Cap
to
0
to scan all images.
Click
Add
.
Click the
Save
button.