• Online installer: The online installer downloads the Harbor images from Docker hub. For this reason, the installer is very small in size.

    • Offline installer: Use the offline installer if the host to which are deploying Harbor does not have a connection to the Internet. The offline installer contains pre-built images, so it is larger than the online installer.

    The installation processes are almost the same for the online and offline installers.

    1. Go to the .

    3. Optionally download the corresponding file to verify that the package is genuine.

      The *.asc file is an OpenPGP key file. Perform the following steps to verify that the downloaded bundle is genuine.

      1. Obtain the public key for the *.asc file.

        You should see the message public key "Harbor-sign (The key for signing Harbor build) <jiangd@vmware.com>" imported

        • Offline installer:

        The gpg command verifies that the bundle’s signature matches that of the key file. You should see confirmation that the signature is correct.

        1. gpg: armor header: Version: GnuPG v1
        2. gpg: assuming signed data in 'harbor-online-installer-v2.0.2.tgz'
        3. gpg: Signature made Tue Jul 28 09:49:20 2020 UTC
        4. gpg:                using RSA key 644FF454C0B4115C
        5. gpg: using pgp trust model
        7. gpg:          There is no indication that the signature belongs to the owner.
        8. Primary key fingerprint: 7722 D168 DAEC 4578 06C9  6FF9 644F F454 C0B4 115C
        9. gpg: binary signature, digest algorithm SHA1, key algorithm rsa4096

    4. Use tar to extract the installer package:

      • Offline installer:

    Next Steps

    • To secure the connections to Harbor, see .