Harbor仓库开启https域名登陆报错问题

出现问题 Error response from daemon: Get “https://reg.hyx.com/v2/”: x509: certificate has expired or is not yet valid

[root@centos12 harbor]# docker login reg.hyx.com
Username: howei
Password: 
Error response from daemon: Get "https://reg.hyx.com/v2/": x509: certificate has expired or is not yet valid: current time 2021-09-07T15:37:01+08:00 is before 2021-09-07T15:25:54Z

网上看到办法很多都是说重新建立证书
总结了一下，最后测试成功使用域名登陆

创建证书就不多说了，harbor安装文章里都有
docker-compose stop
openssl req -newkey rsa:4096 -nodes -sha256 -keyout certs/reg.hyx.com.key -x509 -days 365 -out certs/reg.hyx.com.crt
cd harbor/
vim harbor.yml
./prepare 
./install.sh
以上操作就可以使用https访问harbor了

下来docker login reg.hyx.com登陆问题
cp /data/certs/reg.hyx.com.* /etc/docker/certs.d/reg.hyx.com/	##把上面生成的证书crt和key都给docker下放一份，注意路径
cp /data/certs/reg.hyx.com.crt /etc/docker/certs.d/reg.hyx.com/ca.crt 
##这样复制后/etc/docker/certs.d/reg.hyx.com/会有三个文件reg.hyx.com.crt、reg.hyx.com.key、ca。crt
systemctl restart docker.service
docker-compose down -v
./prepare
docker-compose up -d

操作完成后再登陆私有harbor域名就正常了

[root@centos12 harbor]# docker login reg.hyx.com
Username: howei
Password: 
WARNING! Your password will be stored unencrypted in /root/.docker/config.json.
Configure a credential helper to remove this warning. See
https://docs.docker.com/engine/reference/commandline/login/#credentials-store

Login Succeeded

还有就是配置仓库地址可以设置多个地址

vim /etc/docker/daemon.json
{
  "registry-mirrors": ["https://reg.test.com"]	
}
多个地址配置如
{
  "registry-mirrors": ["https://7777777.mirror.aliyuncs.com"],
  "insecure-registries": ["reg.hyx.com"]
}