March-9th-2018, 08:32 AM
Hello Armin,
that is exactly the post from where my question is.
There is the following written:
"netPI pulls images from trusted Docker registry servers only. Trusted servers provide a trusted certificate from an official Certificate Authority (CA) to rely on its digital signature."
From my point of view is it needed to add own CAs. Because the way you describe is not a real way for a air gapped datacenter. My information says that the certificate from LetsEncrypt will expire after 80 days.
The question is still open:
how is it possible to add a trusted CA to the NetPi (Portainer.io)?
Thank you.
that is exactly the post from where my question is.
There is the following written:
"netPI pulls images from trusted Docker registry servers only. Trusted servers provide a trusted certificate from an official Certificate Authority (CA) to rely on its digital signature."
From my point of view is it needed to add own CAs. Because the way you describe is not a real way for a air gapped datacenter. My information says that the certificate from LetsEncrypt will expire after 80 days.
The question is still open:
how is it possible to add a trusted CA to the NetPi (Portainer.io)?
Thank you.