Cannot pull image from secured private registry
See original GitHub issueI added the registry to /var/snap/microk8s/current/args/containerd-template.toml as follows
[plugins."io.containerd.grpc.v1.cri".registry.mirrors."docker.my.domain"]
endpoint = ["https://docker.my.domain"]
But it couldn’t resolve. So I changed the endpoint to use the IP.
[plugins."io.containerd.grpc.v1.cri".registry.mirrors."docker.my.domain"]
endpoint = ["https://#.#.#.#"]
There was an error with the cert where the IP address was not listed in the SANs - so I re-issued the cert with the IP address in the SANs. Went back to not resolving. Keep in mind, I can successfully pull the image specified using docker pull
.
[plugins."io.containerd.grpc.v1.cri".registry.configs]
[plugins."io.containerd.grpc.v1.cri".registry.configs."docker.my.domain"]
[plugins."io.containerd.grpc.v1.cri".registry.configs."docker.my.domain".tls]
insecure_skip_verify = true
I even tried specifying the CA certificate as the path on the host, no change.
What am I missing?
Issue Analytics
- State:
- Created 3 years ago
- Comments:13
Top Results From Across the Web
Pull an Image from a Private Registry - Kubernetes
This page shows how to create a Pod that uses a Secret to pull an image from a private container image registry or...
Read more >Cannot pull image from secured private registry #1526 - GitHub
There was an error with the cert where the IP address was not listed in the SANs - so I re-issued the cert...
Read more >kubernetes can't pull image from private docker registry
You want to pull it from local repo which is not https, add configuration to allow pull from insecure repository. find docker.conf file ......
Read more >Unable to pull image from external registry in OCP 3.11
Issue. OpenShift is Using 3rd private image registry (like docker-distribution) instead of "registry.redhat.io".
Read more >Cannot pull image :: WebLogic Kubernetes Operator
If the image is available in the remote registry and it is public, that is it does not require authentication, then Kubernetes will...
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
Updating to Nexus 3.27 corrected the issue, I was able to pull the image successfully. Thank you!
Not yet - I’m researching it now, apparently it’s an issue with the registry server not responding to HEAD requests, which I can verify outside of microk8s. I’ll keep you updated, but for now this issue can be closed.