Docker Community Forums

Share and learn in the Docker community.

Issue in installing Docker Trusted Registry

Hi,
I am working on Building a DDC and have gone with building a UCP and adding worker nodes to it.
When I install the DTR in one of the worker nodes, I am facing an issue with starting the DTR.
I get the following messages & warning:
INFO[0053] Recreating dtr-jobrunner-9a0ce16a508a…
INFO[0060] Recreating dtr-notary-signer-9a0ce16a508a…
INFO[0063] Waiting for etcd…
INFO[0063] Verifying auth settings…
INFO[0063] Waiting for etcd…
INFO[0063] Waiting for DTR to start…
INFO[0068] Waiting for DTR to start…
INFO[0073] Waiting for DTR to start…
INFO[0078] Waiting for DTR to start…
INFO[0083] Waiting for DTR to start…
INFO[0088] Waiting for DTR to start…
INFO[0093] Waiting for DTR to start…
INFO[0098] Waiting for DTR to start…
INFO[0103] Waiting for DTR to start…
INFO[0108] Waiting for DTR to start…
INFO[0113] Waiting for DTR to start…
INFO[0118] Waiting for DTR to start…
INFO[0123] Waiting for DTR to start…
INFO[0128] Waiting for DTR to start…
INFO[0133] Waiting for DTR to start…
INFO[0138] Waiting for DTR to start…
INFO[0143] Waiting for DTR to start…
INFO[0148] Waiting for DTR to start…
INFO[0153] Waiting for DTR to start…
INFO[0158] Waiting for DTR to start…
INFO[0163] Waiting for DTR to start…
INFO[0168] Waiting for DTR to start…
INFO[0173] Waiting for DTR to start…
INFO[0178] Waiting for DTR to start…
INFO[0183] Waiting for DTR to start…
INFO[0188] Waiting for DTR to start…
INFO[0193] Waiting for DTR to start…
INFO[0198] Waiting for DTR to start…
INFO[0203] Waiting for DTR to start…
INFO[0208] Waiting for DTR to start…
WARN[0213] Couldn’t confirm authentication works, but still completing installation: Failed to wait for dtr to come back up: Polling failed with 30 attempts 5s apart: error making request to openid/begin Get https://10.0.0.2/api/v0/openid/begin: dial tcp 10.0.0.2:443: getsockopt: connection refused
INFO[0213] Installation is complete
INFO[0213] Replica ID is set to: 9a0ce16a508a
INFO[0213] You can use flag ‘–existing-replica-id 9a0ce16a508a’ when joining other replicas to your Docker Trusted Registry Cluster

After this when I open the browser(Chrome) and go to the DTR web UI: my host address was 10.0.0.2:433, I get the following:
The site cant be reached
10.0.0.2 refused to connect
Try:
Checking the connection
Checking the proxy and firewall.

There is no issue with the internet or so.
Please help me resolve this issue.
Thanks

Could you provide the install command line you used?

Hi Nicolas,

This is the the command I used for installing the DTR:
docker run -it --rm docker/dtr:2.1.4 install --ucp-node DDC-Node02 --dtr-external-url https://10.0.0.2:443 --ucp-url https://10.0.0.1:4443 --ucp-username ibmdocker --ucp-password dockeribm --ucp-ca “$(cat /home/skytap/IBM-Docker-POT/Client-Cert/ucp-bundle-ibmdocker/ca.pem)”

Hey Vikram,

Usually that error happens because the --dtr-external-url is set incorrectly, or something (like a firewall) is preventing you from connecting. Can you check to make certain there isn’t a firewall between the nodes?