When I try to push a docker image to a private registry just built in the build process, I got the following error:
Error response from daemon: Get https://privrepo.com/v1/users/: x509: certificate signed by unknown authority
The SSL certificate of the private repository domain was issued using Letsencrypt certbot. In my workstation, I had the same issue and I had to install the certificate chain.
Here, I’ve tried three approaches, with no success:
- use of
--insecure-registryflag (using environment variable);
- tried to install the certificate chain in current execution (probably container #0);
- tried to do a fresh install of docker and configure certificates in docker’s
I think that those approaches didn’t worked because the execution of the docker command runs in a remote docker engine, and maybe THAT engine don’t have the root certificates of Letsencrypt (ISRG Root X1 and Let’s Encrypt Authority X3).
It could be the problem? If yes, is it possible to install those root certificates on the remote docker-engine?