Docker Community Forums

Share and learn in the Docker community.

Jenkins with UCP?


(Evan Montgomery-Recht) #1

We’re working on utilizing the Jenkins Docker Build and Publish plugin, with a UCP configuration.

Basic question, where we normally would be connecting the $HOST:2376, I want to verify that the same functionality exists. I was assuming it was over the 12376 port, but maybe not. In the end I’m getting a error about ‘no shared cipher’ when trying to connect from jenkins.

Steps tried so far.

  1. Configure Jenkins job to use the machine port to the swarm 12376 without credentials (results in connection reset, and ‘peer did not return certificate’ on swarm node.
  2. Generated a client certificate manually (using the docker instructions https://docs.docker.com/engine/articles/https/). I know the certs work, as I can get a ‘Error 400: Bad Request’ using openssl s_client with the certs. However through the jenkins plugin I get a ‘remote error: handshake failure’. In docker I see ‘no shared cipher’ using a SSL3_GET_CLIENT_HELLO. I’m going to try a little later running tshark to examine the logs. (I was also going to submit something to Cloudbees.)

(Banjot) #2

Hi @montge, are you using a client cert bundle that you downloaded from UCP? You can get a new client bundle by clicking on the account name in the upper-right-hand corner and the choose profile from the menu.

Additional instructions about the client bundle are here in the ucp-docs: http://ucp-beta-docs.s3-website-us-west-1.amazonaws.com/installation/#step-8-set-up-certs-for-the-docker-cli


(Evan Montgomery-Recht) #3

Trying this in a few.


(Evan Montgomery-Recht) #4

Got it working! Basically you have to point Jenkins Docker Build and Publish plugin to the UCP controller on port 443 with my the appropriate privileged user id.

I’m going to update ticket with Cloudbees, we might want a feature to send to a different node on the swarm?


(Vivek Saraswat) #5

We are looking at adding the ability to change the external port at UCP install, yes.