Mastodon Mastodon - Fedora, docker and self-signed SSL certs
 logo
  • Home 
  • Tags 
  • Blog posts 
  1. Home
  2. Blog posts
  3. Fedora, docker and self-signed SSL certs

Fedora, docker and self-signed SSL certs

Posted on April 15, 2015  (Last modified on March 9, 2022) • 1 min read • 121 words
Docker   Linux: Fedora   Linux: Rhel   Ssl  
Docker   Linux: Fedora   Linux: Rhel   Ssl  
Share via
Link copied to clipboard

I am behind a company firewall with a man-in-the-middle SSL certificate for secure connections. Can’t have viruses over SSL, can we?

But apps which actually verify SSL connections (which is all of the apps using standard SSL/TLS/whatnot libs) do not like this. And rightfully so. But then we’re left with the following problem:

$ docker search test
FATA[0000] Error response from daemon: GEt https://index.docker.io/v1/search?q=test: x509: certificate signed by unknown authority
$

Now, to solve this on Fedora we do the following (all as root):

  • get a file with the signing certificate as PEM or DER format
  • place this file under /etc/pki/ca-trust/source/anchors
  • run “update-ca-trust extract”
  • restart docker (“systemctl restart docker.service”)

A “man update-ca-trust” is also helpful to understand what’s happening.

Sources:

  • http://is.gd/rzKxsO
  • http://is.gd/t9to1R
 Install infinality fonts bundle in arch
zsh and dot-directory completions 
In case you want to follow me

Here are some links. The further to the right, the less active.

           
(c) Axel Bock | Powered by Hinode.
Code copied to clipboard