# cat > /etc/yum.repos.d/unicamp-docker.repo <<EOF [unicamp-docker] name=Unicamp Repo for docker Packages baseurl=http://ftp.unicamp.br/pub/ppc64el/rhel/7_1/docker-ppc64el/ enabled=1 gpgcheck=0 EOF |
# yum install -y docker-distribution |
# mkdir /data/registry_data |
# yum install -y httpd-tools # htpasswd -Bc /etc/registry/registry_passwd regimguser |
# mkdir /certs/ # openssl req -newkey rsa:4096 -nodes -sha256 -keyout /certs/domain.key -x509 -days 365 -out /certs/domain.crt Generating a 4096 bit RSA private key ..........................................................................................++ [snip] |
# mkdir -p /etc/docker/certs.d/registry.kube.com:5000/ # cp domain.crt /etc/docker/certs.d/registry.kube.com:5000/ca.crt |
# cp domain.crt /etc/pki/ca-trust/source/anchors/registry.kube.com.crt # update-ca-trust |
# cp domain.crt /usr/local/share/ca-certificates/registry.kube.com.crt # update-ca-certificates |
# service docker restart |
# REGISTRY_HTTP_TLS_CERTIFICATE=/certs/domain.crt REGISTRY_HTTP_TLS_KEY=/certs/domain.key screen -dmS registry registry /etc/registry/config.yml |
# cat /etc/registry/config.yml version: 0.1 storage: filesystem: rootdirectory: /data/registry_data delete: enabled: true http: addr: registry.kube.com:5000 host: https://registry.kube.com:5000 tls: certificate: /certs/domain.crt key: /certs/domain.key auth: htpasswd: realm: basic-realm path: /etc/registry/registry_passwd |
# screen -dmS registry registry /etc/registry/config.yml |
# docker login https://registry.kube.com:5000 |
欢迎光临 电子技术论坛_中国专业的电子工程师学习交流社区-中电网技术论坛 (http://bbs.eccn.com/) | Powered by Discuz! 7.0.0 |