docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add troubleshooting tip for default https port 

Rename the CA certificate file to ca.crt: It is not the cert of the server, but of the CA.
This commit is contained in:
Tim H 2017-02-23 13:42:51 +01:00 committed by GitHub
parent a90f70e360
commit d636c8781d
1 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
engine/security/certificates.md
View File

@ -43,7 +43,7 @@ The following illustrates a configuration with custom certificates:
└── localhost:5000 <-- Hostname:port
├── client.cert <-- Client certificate
├── client.key <-- Client key
└── localhost.crt <-- Certificate authority that signed
└── ca.crt <-- Certificate authority that signed
the registry certificate
```
@ -76,6 +76,16 @@ following error message:
Missing key KEY_NAME for client certificate CERT_NAME. Note that CA certificates should use the extension .crt.
```
If the Docker registry is accessed without a port number, do not add the port to the directory name. The following shows the configuration for a registry on default port 443 which is accessed with `docker login my-https.registry.example.com`:
```
/etc/docker/certs.d/
└── my-https.registry.example.com <-- Hostname without port
├── client.cert
├── client.key
└── ca.crt
```
## Related Information
* [Use trusted images](index.md)