This one is not ok
<30>1 2020-05-13T11:57:29+02:00 NTB827EB4241C8 dockerd 1929 - - time="2020-05-13T11:57:29.959897611+02:00" level=warning msg="Error getting v2 registry: Get
https://registry-1.docker.io/v2/: x509: certificate signed by unknown authority"
I need to verify this problem.
„You never fail until you stop trying.“, Albert Einstein (1879 - 1955)
Ups ... and why does it work now? I don't understand.
In the background I have set up a brand new NIOT-TPI51-EN-RE with latest firmware V1.2.0.0 and it worked right away to pull the container hilschernetpi/netpi-raspbian
So what have you changed and why does it work here in the office with my device?
„You never fail until you stop trying.“, Albert Einstein (1879 - 1955)
Hello Carsten,
we are still not able to see the CA certificate error with V1.2.0.0 software here. Are you sure you have used V1.2.0.0 software?
You see the device's software version on its web landing page in the right lower corner before you login.
Thx
Armin
„You never fail until you stop trying.“, Albert Einstein (1879 - 1955)
Hello Armin,
at the end, it turns out as a very special firewall issue.
To make https working in our network, all devices have to trust the private certificate of the firewall. But this cert is private.
When I asked the guys, why the netPI cannot pull the containter, they make an exception for the website in the firewall, assuming the netPi could trust the firewalls own certificate by itsalf. but this was a mistake.
I got the same problem the starting to pull modules for the node.js . The certificate of GITHUB and NODEJS should be untrusted? Never, ever!
So, what's the conclusion:
If you have an enviroment with a firewall and encounter always problems with untrusted , obsolte or private certificates: suffocate the IT-guys until they give you a PEM-file with the self-signed certificat of the firewall. And after this, spent them a coffee and install this file in the security tab of the netPi and any container on this device.
Glad to read you again and kind regards,
Carsten