doctl registries kubernetes-manifest

Generated on 20 Oct 2025 from doctl version v1.146.0

Usage 

doctl registries kubernetes-manifest <registry-name> [flags]

Aliases 

k8s

Description

Outputs a YAML-formatted Kubernetes secret manifest that can be used to grant a Kubernetes cluster pull access to your private container registry.

By default, the secret manifest is applied to all the namespaces for the Kubernetes cluster using the DOSecret operator. The DOSecret operator is available on clusters running version 1.15.12-do.2 or greater. For older clusters, or to restrict the secret to a specific namespace, use the --namespace flag.

You can redirect the command’s output to a file to save the manifest for later use or pipe it directly to kubectl to create the secret in your cluster:

doctl registries kubernetes-manifest example-registry | kubectl apply -f -

Example

The following example generates a secret manifest for a registry named example-registry and applies it to the kube-system namespace:

doctl registries kubernetes-manifest example-registry --namespace=kube-system

Flags

Option Description
--help, -h Help for this command
--name The secret’s name. Defaults to the registry name prefixed with “registry-”
--namespace The Kubernetes namespace to hold the secret
Default: kube-system
Command Description
doctl registries Display commands for working with multiple container registries

Global Flags

Option Description
--access-token, -t API V2 access token
--api-url, -u Override default API endpoint
--config, -c Specify a custom config file
Default:
    --context Specify a custom authentication context name
    --http-retry-max Set maximum number of retries for requests that fail with a 429 or 500-level error
    Default: 5
    --http-retry-wait-max Set the minimum number of seconds to wait before retrying a failed request
    Default: 30
    --http-retry-wait-min Set the maximum number of seconds to wait before retrying a failed request
    Default: 1
    --interactive Enable interactive behavior. Defaults to true if the terminal supports it (default false)
    Default: false
    --output, -o Desired output format [text|json]
    Default: text
    --trace Show a log of network activity while performing a command
    Default: false
    --verbose, -v Enable verbose output
    Default: false

    We can't find any results for your search.

    Try using different keywords or simplifying your search terms.