Docker Community Forums

Share and learn in the Docker community.

DTR S3 x509: certificate signed by unknown authority for self signed ECS Certificat


(Meslienm) #1

Hello all,
I’am facing to an issue.

Issue type : x509: certificate signed by unknown authority
Os : Redhat 7.5/ docker-ee-17.06.2/dtr 2.5.2
Steps to reproduce : trying to connect to a self signed emc ECS in s3 mode.

when I enter all the information for connecting to the S3 , in the docker/dtr-api:2.5.2 when I make a docker container logs, i’am found this error :

{“go.version”:“go1.8.3”,“instance.id”:“75fc1b2d-3123-4df2-a163-8d907f25c58a”,“level”:“debug”,“msg”:“s3aws.PutContent(”/31989e7a-787b-4579-af49-25bcf842ff62")",“time”:“2018-07-31T14:14:14.44663468Z”,“trace.duration”:324382595,“trace.file”:"/go/src/github.com/docker/dhe-deploy/gocode/vendor/github.com/docker/distribution/registry/storage/driver/base/base.go",“trace.func”:“github.com/docker/dhe-deploy/gocode/vendor/github.com/docker/distribution/registry/storage/driver/base.(*Base).PutContent”,“trace.id”:“88346f6c-00fe-4b15-8997-5eb3dac48dfd”,“trace.line”:95}
{“error”:“s3aws: RequestError: send request failed\ncaused by: Put https://serveur_ecs_name:9021/docker/31989e7a-787b-4579-af49-25bcf842ff62: x509: certificate signed by unknown authority”,“level”:“error”,“msg”:“Failed to update registry config”,“time”:“2018-07-31T14:14:14.44670682Z”}.
In fact this error is normal because it’s self signed certificate.
I’am using this [https://success.docker.com/article/i-get-x509-certificate-signed-by-unknown-authority-error-when-i-try-to-login-to-my-dtr-with-default-certificates
It working for local unix command, but not for the DTR.
How can you add a certificate for the docker DTR
Thanks