Define a custom CA certificate for a private Docker registry¶
Available since 2.18.0
Caution
For MOSK-based deployments, the feature support will become available in one of the following Container Cloud releases.
This section instructs you on how to define a custom CA certificate for Docker registry connections on your management, regional, or managed cluster.
Create a
ContainerRegistry
resource(s) with the required registry domain and CA certificate. For details, see API Reference: ContainerRegistry resource.In the
providerSpec
section of theCluster
object, set thecontainerRegistries
field with the names list of createdContainerRegistry
resource objects:kubectl patch cluster -n <clusterProjectName> <clusterName> --type merge -p '{"spec":{"providerSpec":{"value":{"containerRegistries":["<containerRegistryName>"]}}}}'