Hi, spent a lot of time trying to make it work with no luck, so I’m trying here. I’m trying to have a copy of our production environment using microk8s for testing purposes. The issue is that our Artifactory server certificate is auto generated, so the error “x509: certificate signed by unknown authority” is arosen.
Anyway on microk8s.docker I have had it working, adding the insecure registry to /etc/docker/daemon.json and then configuring microk8s.docker service executing:
echo ‘–config-file=/etc/docker/daemon.json’ | sudo tee -a /var/snap/microk8s/current/args/dockerd
sudo systemctl restart snap.microk8s.daemon-docker.service
Then if I pull using microk8s.docker against my Artifactory it works.
Problem is, it doesn’t work for a k8s deployment using microk8s.kubectl. The same image, when set on spec -> containers -> image fails to pull, saying on syslog:
Jan 28 13:53:52 sdvs-dev microk8s.daemon-docker: time=“2019-01-28T13:53:52.310454404Z” level=error msg=“Handler for POST /v1.38/images/create returned error: Get https://k8s.gcr.io/v2/: x509: certificate signed by unknown authority”
How can I configure the docker subsystem of microk8s.kubectl to work with a self-signed images artifactory?