出现问题 Error response from daemon: Get “https://reg.hyx.com/v2/”: x509: certificate has expired or is not yet valid
[root@centos12 harbor]# docker login reg.hyx.com
Username: howei
Password:
Error response from daemon: Get "https://reg.hyx.com/v2/": x509: certificate has expired or is not yet valid: current time 2021-09-07T15:37:01+08:00 is before 2021-09-07T15:25:54Z
网上看到办法很多都是说重新建立证书
总结了一下,最后测试成功使用域名登陆
创建证书就不多说了,harbor安装文章里都有
docker-compose stop
openssl req -newkey rsa:4096 -nodes -sha256 -keyout certs/reg.hyx.com.key -x509 -days 365 -out certs/reg.hyx.com.crt
cd harbor/
vim harbor.yml
./prepare
./install.sh
以上操作就可以使用https访问harbor了
下来docker login reg.hyx.com登陆问题
cp /data/certs/reg.hyx.com.* /etc/docker/certs.d/reg.hyx.com/ ##把上面生成的证书crt和key都给docker下放一份,注意路径
cp /data/certs/reg.hyx.com.crt /etc/docker/certs.d/reg.hyx.com/ca.crt
##这样复制后/etc/docker/certs.d/reg.hyx.com/会有三个文件reg.hyx.com.crt、reg.hyx.com.key、ca。crt
systemctl restart docker.service
docker-compose down -v
./prepare
docker-compose up -d
操作完成后再登陆私有harbor域名就正常了
[root@centos12 harbor]# docker login reg.hyx.com
Username: howei
Password:
WARNING! Your password will be stored unencrypted in /root/.docker/config.json.
Configure a credential helper to remove this warning. See
https://docs.docker.com/engine/reference/commandline/login/#credentials-store
Login Succeeded
还有就是配置仓库地址可以设置多个地址
vim /etc/docker/daemon.json
{
"registry-mirrors": ["https://reg.test.com"]
}
多个地址配置如
{
"registry-mirrors": ["https://7777777.mirror.aliyuncs.com"],
"insecure-registries": ["reg.hyx.com"]
}