Securing a Private Repository

brianpaquin · March 27, 2019, 1:40pm

I followed the instructions on

to setup a Docker Registry on a Mac (10.12.6 running docker 18.09).
I’m using a GlobalSign certificate which also has an intermediate certificate.

I was able to get the registry running and then connect via cURL and a web browser, but not using the docker login command (got a “x509: certificate signed by unknown authority” error).

After a LOT of searching, I found another article

which helped me add the certificates and get the Mac client working!

However, I added ALL the certificates I had…
What, specifically do I need to put into ~/.docker/certs.d/server:5000/??
(I have the GlobalSign root certs R1 and R3, the GlobalSign intermediate, my public cert, and the bundle I used in the Registry which had the public and intermediate cat’ed together)

Thank you,

Brian Paquin

Topic		Replies	Views
X509 on all requests Docker Hub dockerhub , docker	0	1115	July 3, 2017
Where to place client certificates for secure docker registry? Docker Desktop macos	6	42775	April 5, 2018
Private registry always returns x509: certificate signed by unknown authority General	3	18118	July 16, 2019
Private Certificate Authority SSL certs Docker Desktop macos	24	25764	December 14, 2018
Docker Private Registry: x509: certificate signed by unknown authority Docker Engine	12	388254	May 8, 2024

Securing a Private Repository

Related topics