I work with Gary, replying to your comments.
Can you display the node-join command you attempted to run?
docker run --rm -it --name ucp -v /var/run/docker.sock:/var/run/docker.sock -v /tmp/backup.tar:/backup.tar docker/ucp join -i --replica --fingerprint C2:C1:29:B0:2C:4F:D8:02:DE:45:3D:B0:F2:E1:DF:00:44:F2:4D:DB --external-server-cert --debug
Did you apply a valid license file prior to adding a node? UCP cannot join nodes without one.
Yes the UCP controller is fully setup with license and we are already using it to deploy containers
I noticed a missing parameter around certificate requests. Are you using your own certs or the ones built into UCP? (If you made no changes it should be the built-in ones by default).
Custom Certs - and they have been transferred on a new volume as per instructions in the UCP installation page. Though I have tried this without custom certs in a fully new setup and failed with similar error
with the custom certs applied we now get the following error
DEBU Server cert(s) passed TOFU tests
DEBU Joining as a replica
DEBU Injecting user provided root CA cert/key pair
DEBU Injecting user supplied replica CA certs/keys
DEBU Failed to get CSR signed by UCP
FATA unexpected EOF
- What does the docker logs look like for the UCP container when you get this error?
I am not able to fire docker logs on the container as the container is not installed fully. Though a peep into /var/log/messages since this is a redhead box does not reveal much either.
Any help will be greatly appreciated.