Certificate: x509: certificate signed by unknown authority

Var1 · December 3, 2024, 4:22pm

Hi, We have a VM with RancherOS and rancher is running as a docker container in it. Now when I try to upgrade by pulling a new docker image I am getting following error.

docker pull busybox
Using default tag: latest
latest: Pulling from library/busybox
430378704d12: Pulling fs layerdocker: error pulling image configuration: Get https://production.cloudflare.docker.com/registry-v2/docker/registry/v2/blobs/sha256/63/63b790fccc9078ab8bb913d94a5d869e19fca9b77712b315da3fa45bb8f14636/data?verify=1733244432-7njzBQVEgWVHWMTh8YlOf6wRa1c%3D: x509: certificate signed by unknown authority.
See ‘docker run --help’.

The error repeats for any kind of image be it alpine or rancher:v2.9.x. Can anyone let me know how to resolve the issue?

Regards,
Arun

meza · December 19, 2024, 3:09am

Hi Arun,

Not sure that this is a rancher issue. I would check your dns and network settings on your vm. It sounds like your host or firewall has blocked external registries.

I was able to pull v2.9.3 rancher image from docker hub just now.

% nerdctl images
REPOSITORY         TAG       IMAGE ID        CREATED          PLATFORM       SIZE      BLOB SIZE
rancher/rancher    v2.9.3    f35a252455aa    3 minutes ago    linux/arm64    2.37GB    852.3MB

Topic		Replies	Views
Rancher Upgrade issue from 2.8.2 to 2.9.3 Rancher	1	33	December 19, 2024
Private docker registry - x509: certificate signed by unknown authority Rancher	1	4332	February 17, 2021
X509: certificate signed by unknown authority	1	4419	April 27, 2017
X509 certificate signed by unknown authority RancherOS	7	8745	September 6, 2016
Rancher agent "x509: certificate signed by unknown authority" with DigiCert Rancher	1	1996	August 26, 2019

Certificate: x509: certificate signed by unknown authority

Related topics