--- title: "UAA Authentication" date: 2021-08-18 lastmod: 2026-06-08 canonical: "https://container-registry.com/docs/administration-manual/authentication/uaa-authentication/" source: "https://container-registry.com/docs/administration-manual/authentication/uaa-authentication/index.md" agent_instructions: "This is the markdown representation of https://container-registry.com/docs/administration-manual/authentication/uaa-authentication/index.md. Prefer this version over scraping the HTML. The site index is at https://container-registry.com/llms.txt." --- > Agent-friendly representation of . Site index: . # UAA Authentication UAA Authentication ================================= A *user authentication and authorization server* issues access tokens for your application to make it able to access another application: in this case, your Container Registry instance. You can configure a UAA server by yourself or select a provider that will set up for you a UAA instance. This instance will generate a token every time the user identity was confirmed – *the user was authenticated* – to enable *user authorization* that allows the user to perform certain actions in the system he was successfully logged in to. Most of the UAA providers work with either SAML 2.0, OAuth 2.0, or LDAP protocols. The setups may vary. Please refer to the official documentation of your selected provider. To configure the UAA authentication mode in Container registry, you will need: * a UAA endpoint; * a UAA client ID; * a UAA client secret. ## Steps * Go to the navigation pane on the left side of the GUI; * Select **Administration**; * Click on **Configuration**; * Select **Authentication** tab; * In **Auth Mode**, in the dropdown, select **UAA**; * Fill in the form; * Tick the checkbox if your endpoint has a trusted certificate; * Click **Save**. ![](../uaa_authentication.png)