Hi, I installed rancher (installed via helm chart) on a RKE2 single node cluster (installed via quick start script).
Nexus3 is used to serve the private docker registries. That part works so far.
Since no direct internet access is available on this host, I want to host the helm catalogs in nexus as well.
Nexus has TLS enabled, the certificate is signed with a selfsigned CA.
When changing the catalog url to my nexus repo I get “x509: certificate signed by unknown authority”.
How can I add my own CA as trusted by rancher? The underlying centos7 already trusts the CA, but not the rancher pod.
Thanks in advance, Andreas