centersl/docker-docs
1
0
Fork 0
mirror of https://github.com/docker/docs.git synced 2026-03-27 14:28:47 +07:00
Code Issues Packages Projects Releases Wiki Activity

admin: FAQ freshness (#23041)

Browse Source 
## Description
- FAQ freshness for Admin section
- Renamed General to Accounts
- Removed unnecessary/bad FAQs, verified the ones I removed _are_
covered in regular manual pages in the Admin section

## Reviews
- [ ] Editorial review
This commit is contained in:
Sarah Sanders
2025-07-10 13:30:45 -04:00
committed by GitHub
parent 1b70e4d481
commit 1ab3b48653
4 changed files with 75 additions and 151 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
content/manuals/admin/faqs/_index.md
View File

@@ -1,6 +1,7 @@
---
build:
render: never
linkTitle: FAQ
title: Account and admin FAQ
weight: 30
---

56
content/manuals/admin/faqs/company-faqs.md
View File

@@ -10,25 +10,17 @@ aliases:
- /faq/admin/company-faqs/
---
### Are existing subscriptions affected when you create a company and add organizations to it?
You can manage subscriptions and related billing details at the organization level.
### Some of my organizations dont have a Docker Business subscription. Can I still use a parent company?
Yes, but you can only add organizations with a Docker Business subscription to a company.
Yes, but you can only add organizations with a Docker Business subscription
to a company.
### What happens if one of my organizations downgrades from Docker Business, but I still need access as a company owner?
To access and manage child organizations, the organization must have a Docker Business subscription. If the organization isnt included in this subscription, the owner of the organization must manage the organization outside of the company.
### Does my organization need to prepare for downtime during the migration process?
No, you can continue with business as usual.
### How many company owners can I add?
You can add a maximum of 10 company owners to a single company account.
To access and manage child organizations, the organization must have a
Docker Business subscription. If the organization isnt included in this
subscription, the owner of the organization must manage the organization
outside of the company.
### Do company owners occupy a subscription seat?
@@ -51,37 +43,7 @@ subscription seat.
### What permissions does the company owner have in the associated/nested organizations?
Company owners can navigate to the **Organizations** page to view all their nested organizations in a single location. They can also view or edit organization members and change single sign-on (SSO) and System for Cross-domain Identity Management (SCIM) settings. Changes to company settings impact all users in each organization under the company. For more information, see [Roles and permissions](../../security/for-admins/roles-and-permissions.md).
Company owners can navigate to the **Organizations** page to view all their
nested organizations in a single location. They can also view or edit organization members and change single sign-on (SSO) and System for Cross-domain Identity Management (SCIM) settings. Changes to company settings impact all users in each organization under the company.
### What features are supported at the company level?
You can manage domain verification, SSO, and SCIM at the company level. The following features aren't supported at the company level, but you can manage them at the organization level:
- Image Access Management
- Registry Access Management
- User management
- Billing
To view and manage users across all the organizations under your company, you can [manage users at the company level](../../admin/company/users.md) when you use the [Admin Console](https://app.docker.com/admin).
Domain audit isn't supported for companies or organizations within a company.
### What's required to create a company name?
A company name must be unique to that of its child organization. If a child organization requires the same name as a company, you should modify it slightly. For example, **Docker Inc** (parent company), **Docker** (child organization).
### How does a company owner add an organization to the company?
You can add organizations to a company in the Admin Console. For more information, see [Add organizations to a company](../../admin/company/organizations.md#add-organizations-to-a-company.md).
### How does a company owner manage SSO/SCIM settings for a company?
See your [SCIM](scim.md) and [SSO](../../security/for-admins/single-sign-on/configure/_index.md) settings.
### How does a company owner enable group mapping in an IdP?
See [SCIM](scim.md) and [group mapping](../../security/for-admins/provisioning/group-mapping.md) for more information.
### What's the definition of a company versus an organization?
A company is a collection of organizations that are managed together. An organization is a collection of repositories and teams that are managed together.
For more information, see [Roles and permissions](../../security/for-admins/roles-and-permissions.md).

85
content/manuals/admin/faqs/general-faqs.md
View File

@@ -1,6 +1,6 @@
---
title: General FAQs for Docker accounts
linkTitle: General
title: FAQs on Docker accounts
linkTitle: Accounts
weight: 10
description: Frequently asked Docker account and administration questions
keywords: onboarding, docker, teams, orgs, user accounts, organization accounts
@@ -13,56 +13,47 @@ aliases:
### What is a Docker ID?
A Docker ID is a username for your Docker account that lets you access Docker products. To create a Docker ID, you need an email address or you can sign up with your social or GitHub accounts. Your Docker ID must be between 4 and 30 characters long, and can only contain numbers and lowercase letters. You can't use any special characters or spaces.
A Docker ID is a username for your Docker account that lets you access Docker
products. To create a Docker ID you need one of the following:
For more information, see [Docker ID](/accounts/create-account/). If your administrator enforces [single sign-on (SSO)](../../security/for-admins/single-sign-on/_index.md), this provisions a Docker ID for new users.
- An email address
- A social account
- A GitHub account
Developers may have multiple Docker IDs in order to separate their Docker IDs associated with an organization with a Docker Business or Team subscription, and their personal use Docker IDs.
Your Docker ID must be between 4 and 30 characters long, and can only contain
numbers and lowercase letters. You can't use any special characters or spaces.
For more information, see [Create a Docker ID](/accounts/create-account/).
### Can I change my Docker ID?
No. You can't change your Docker ID once it's created. If you need a different Docker ID, you must create a new Docker account with a new Docker ID.
No. You can't change your Docker ID once it's created. If you need a different
Docker ID, you must create a new Docker account with a new Docker ID.
Additionally, you can't reuse a Docker ID in the future if you deactivate your account.
Docker IDs can't be reused after deactivation.
### What if my Docker ID is taken?
All Docker IDs are first-come, first-served except for companies that have a U.S. Trademark on a username. If you have a trademark for your namespace, [Docker Support](https://hub.docker.com/support/contact/) can retrieve the Docker ID for you.
All Docker IDs are first-come, first-served except for companies that have a
U.S. Trademark on a username.
### Whats an organization?
An organization in Docker is a collection of teams and repositories that are managed together. Docker users become members of an organization once they're associated with that organization by an organization owner. An [organization owner](#who-is-an-organization-owner) is a user with administrative access to the organization. For more information on creating organizations, see [Create your organization](orgs.md).
If you have a trademark for your namespace,
[Docker Support](https://hub.docker.com/support/contact/) can retrieve the
Docker ID for you.
### What's an organization name or namespace?
The organization name, sometimes referred to as the organization namespace or the organization ID, is the unique identifier of a Docker organization. The organization name can't be the same as an existing Docker ID.
### What are roles?
A role is a collection of permissions granted to members. Roles define access to perform actions in Docker Hub like creating repositories, managing tags, or viewing teams. See [Roles and permissions](roles-and-permissions.md).
### Whats a team?
A team is a group of Docker users that belong to an organization. An organization can have multiple teams. An organization owner can then create new teams and add members to an existing team using Docker IDs or email address and by selecting a team the user should be part of. See [Create and manage a team](manage-a-team.md).
### What's a company?
A company is a management layer that centralizes administration of multiple organizations. Administrators can add organizations with a Docker Business subscription to a company and configure settings for all organizations under the company. See [Set up your company](/admin/company/).
The organization name, sometimes referred to as the organization namespace or
the organization ID, is the unique identifier of a Docker organization. The
organization name can't be the same as an existing Docker ID.
### Who is an organization owner?
An organization owner is an administrator who has permissions to manage
repositories, add members, and manage member roles. They have full access to
private repositories, all teams, billing information, and organization settings.
An organization owner can also specify [repository permissions](manage-a-team.md#configure-repository-permissions-for-a-team) for each team in the
organization. Only an organization owner can enable SSO for the organization.
When SSO is enabled for your organization, the organization owner can also
manage users.
An organization owner is a member who has administrator permissions. They
have full access to private repositories, all teams, billing information, and
organization settings.
Docker can auto-provision Docker IDs for new end-users or users who'd like to
have a separate Docker ID for company use through SSO enforcement.
The organization owner can also add additional owners to help them manage users, teams, and repositories in the organization.
For more information on the organization owner role, see [Roles and permissions](/manuals/security/for-admins/roles-and-permissions.md).
### Can I configure multiple SSO identity providers (IdPs) to authenticate users to a single org?
@@ -71,26 +62,14 @@ information, see [Configure SSO](../../security/for-admins/single-sign-on/config
### What is a service account?
> [!IMPORTANT]
>
> As of December 10, 2024, service accounts are no longer available. Existing Service Account agreements will be honored until their current term expires, but new purchases or renewals of service accounts no longer available and customers must renew under a new subscription. It is recommended to transition to Organization Access Tokens (OATs), which can provide similar functionality. For more information, see [Organization access tokens (Beta)](/manuals/security/for-admins/access-tokens.md).
Service accounts were deprecated on December 10, 2024. Existing Service Account
agreements will be honored until their current term expires, but new purchases
or renewals of service accounts are no longer available and customers must renew
under a new subscription.
A [service account](../../docker-hub/service-accounts.md) is a Docker ID used for automated management of container images or containerized applications. Service accounts are typically used in automated workflows, and don't share Docker IDs with the members in the Team or Business subscription. Common use cases for service accounts include mirroring content on Docker Hub, or tying in image pulls from your CI/CD process.
For similar functionality,
transition to [Organization access tokens](/manuals/security/for-admins/access-tokens.md).
### Can I delete or deactivate a Docker account for another user?
Only someone with access to the Docker account can deactivate the account. For more details, see [Deactivating an account](../../admin/organization/deactivate-account.md).
If the user is a member of your organization, you can remove the user from your organization. For more details, see [Remove a member or invitee](../../admin/organization/members.md#remove-a-member-from-a-team).
### How do I manage settings for a user account?
You can manage your account settings anytime when you sign in to your [Docker account](https://app.docker.com/login). Select your avatar in the top-right navigation, then select **My Account**.
You can also access this menu from any Docker web applications when you're signed in to your account. See [Manage your Docker account](/accounts/manage-account). If your account is associated with an organization that uses SSO, you may have limited access to the settings that you can control.
### How do I add an avatar to my Docker account?
To add an avatar to your Docker account, create a [Gravatar account](https://gravatar.com/) and create your avatar. Next, add your Gravatar email to your Docker account settings.
Note, that it may take some time for your avatar to update in Docker.

84
content/manuals/admin/faqs/organization-faqs.md
View File

@@ -10,80 +10,62 @@ aliases:
- /faq/admin/organization-faqs/
---
### What if the Docker ID I want for my organization or company is taken?
### How can I see how many active users are in my organization?
All Docker IDs are first-come, first-served except for companies that have a U.S. Trademark on a username. If you have a trademark for your namespace, [Docker Support](https://hub.docker.com/support/contact/) can retrieve the Docker ID for you.
If your organization uses a Software Asset Management tool, you can use it to
find out how many users have Docker Desktop installed. If your organization
doesn't use this software, you can run an internal survey
to find out who is using Docker Desktop.
### How do I add an organization owner?
For more information, see [Identify your Docker users and their Docker accounts](../../admin/organization/onboard.md#step-1-identify-your-docker-users-and-their-docker-accounts).
An existing owner can add additional team members as organization owners. You can [invite a member](../../admin/organization/members.md#invite-members) and assign them the owner role in Docker Hub or the Docker Admin Console.
### Do users need to authenticate with Docker before an owner can add them to an organization?
### How do I know how many active users are part of my organization?
If your organization uses a Software Asset Management tool, you can use it to find out how many users have Docker Desktop installed. If your organization doesn't use this software, you can run an internal survey to find out who is using Docker Desktop. See [Identify your Docker users and their Docker accounts](../../admin/organization/onboard.md#step-1-identify-your-docker-users-and-their-docker-accounts). With a Docker Business subscription, you can manage members in your identity provider and automatically provision them to your Docker organization with [SSO](../../security/for-admins/single-sign-on/_index.md) or [SCIM](../../security/for-admins/provisioning/scim.md).
### Do users first need to authenticate with Docker before an owner can add them to an organization?
No. Organization owners can invite users with their email addresses, and also assign them to a team during the invite process.
No. Organization owners can invite users with their email addresses, and also
assign them to a team during the invite process.
### Can I force my organization's members to authenticate before using Docker Desktop and are there any benefits?
Yes. You can [enforce sign-in](../../security/for-admins/enforce-sign-in/_index.md). Some benefits of enforcing sign-in are:
Yes. You can
[enforce sign-in](../../security/for-admins/enforce-sign-in/_index.md).
Some benefits of enforcing sign-in are:
- Administrators can enforce features like [Image Access Management](/manuals/security/for-admins/hardened-desktop/image-access-management.md) and [Registry Access Management](../../security/for-admins/hardened-desktop/registry-access-management.md).
- Administrators can ensure compliance by blocking Docker Desktop usage for users who don't sign in as members of the organization.
- Administrators can ensure compliance by blocking Docker Desktop usage for
users who don't sign in as members of the organization.
### If a user has their personal email associated with a user account in Docker Hub, do they have to convert to using the organization's domain before they can be invited to join an organization?
Yes. When SSO is enabled for your organization, each user must sign in with the companys domain. However, the user can retain their personal credentials and create a new Docker ID associated with their organization's domain.
### Can I convert my personal user account (Docker ID) to an organization account?
### Can I convert my personal Docker ID to an organization account?
Yes. You can convert your user account to an organization account. Once you
convert a user account into an organization, it's not possible to
revert it to a personal user account. For prerequisites and instructions, see
revert it to a personal user account.
For prerequisites and instructions, see
[Convert an account into an organization](convert-account.md).
### Our users create Docker Hub accounts through self-service. How do we know when the total number of users for the requested licenses has been met? Is it possible to add more members to the organization than the total number of licenses?
There isn't any automatic notification when the total number of users for the requested licenses has been met. However, if the number of team members exceed the number of licenses, you will receive an error informing you to contact the administrator due to lack of seats. You can [add seats](../../subscription/manage-seats.md) if needed.
### How can I merge organization accounts?
You can downgrade a secondary organization and transition your users and data to a primary organization. See [Merge organizations](../organization/orgs.md#merge-organizations).
### Do organization invitees take up seats?
Yes. A user invited to an organization will take up one of the provisioned
seats, even if that user hasnt accepted their invitation yet. Organization
owners can manage the list of invitees through the **Invitees** tab on the organization settings page in Docker Hub, or in the **Members** page in Admin Console.
seats, even if that user hasnt accepted their invitation yet.
To manage invites, see [Manage organization members](/manuals/admin/organization/members.md).
### Do organization owners take a seat?
Yes. Organization owners will take up a seat.
Yes. Organization owners occupy a seat.
### What is the difference between user, invitee, seat, and member?
User refers to a Docker user with a Docker ID.
- User: Docker user with a Docker ID.
- Invitee: A user that an administrator has invited to join an organization but
has not yet accepted their invitation.
- Seats: The number of purchased seats in an organization.
- Member: A user who has received and accepted an invitation to join an
organization. Member can also refer to a member of a team within an
organization.
An invitee is a user that an administrator has invited to join an organization but has not yet accepted their invitation.
### If I have two organizations and a user belongs to both organizations, do they take up two seats?
Seats are the number of planned members within an organization.
Member may refer to a user who has received and accepted an invitation to join an organization. Member can also refer to a member of a team within an organization.
### If there are two organizations and a user belongs to both organizations, do they take up two seats?
Yes. In a scenario where a user belongs to two organizations, they take up one seat in each organization.
### Is it possible to set permissions for repositories within an organization?
Yes. You can configure repository access on a per-team basis. For example, you
can specify that all teams within an organization have **Read and Write** access
to repositories A and B, whereas only specific teams have **Admin** access. Org
owners have full administrative access to all repositories within the
organization. See [Configure repository permissions for a team](manage-a-team.md#configure-repository-permissions-for-a-team). Administrators can also assign members the editor role, which grants administrative permissions for repositories across the namespace of the organization. See [Roles and permissions](../../security/for-admins/roles-and-permissions.md).
### Does my organization need to use Docker's registry?
A registry is a hosted service containing repositories of images that responds to the Registry API. Docker Hub is Docker's primary registry, but you can use Docker with other container image registries. You can access the default registry by browsing to [Docker Hub](https://hub.docker.com) or using the `docker search` command.
Yes. In a scenario where a user belongs to two organizations, they take up one
seat in each organization.