To work around the Docker Daemon considering the Nexus HTTPS as untrustworthy, the daemon has an option called -insecure-registry . Nexus 3 is not configured with HTTPS connectors by default as configuring it requires an SSL certificate to be generated and configured manually.įor testing purposes, it is common that an administrator may want to use a self-signed TLS certificate for Nexus HTTPS connectors.Īlthough self-signed certificates can encrypt HTTP communication and be generated quickly, they are generally considered untrustworthy because the certificate identity has not been signed/verified by a third party certificate authority (CA).
In order to use authentication, the Docker Daemon implementation enforces that the registry connection uses HTTPS.
A private Docker registry such as Nexus Repository Manager 3 will require authentication from your users in order to publish docker images.
0 kommentar(er)
