How to pull new docker images to openshift cluster nodes from remote private registry?

All steps specified in https://blog.openshift.com/remotely-push-pull-container-images-openshift/ (and other sources) worked perfectly on master, but it does not help me to pull from nodes.

Details:

  • Can i use watch in nodemon or pm2 in docker with file in shard drive?
  • Get Swarm node IP address from a container using API?
  • Configuring external access to the GAE app under the google/cloud-sdk docker container
  • GitLab-CI multi runner start docker container
  • HTTPS on Elastic Beanstalk (Docker Multi-container)
  • Invalid repository name while pulling an image in docker
    1. Logged in on master and two nodes to registry: docker login
      https://my.registry:5000

    2. Created new secret on master with: oc secrets new my.registry
      .dockerconfigjson=/root/.docker/config.json
      (can’t do the same on
      nodes, because they do not have oc utility)

    3. In my current project added secret for default account: oc secrets
      add serviceaccount/default secrets/my.registry –for=pull

    Now when I’m naking a new deployment, the pods created on master will start perfectly well (master will be able to pull needed images), but pods on nodes will fail to start unless I manually pull images on them with docker pull.

    So how can I make all nodes from my openshift (origin) cluster pull images with specified default account?

  • Docker --tag vs --name clarification
  • datapower cannot be installed in docker
  • Docker: is it possible to use overlayed backing filesystem?
  • Silently Installing pecl modules (e.g. pecl_http) Inside a Docker Container?
  • How to remove docker completely from ubuntu 14.04
  • how to handle redirection url in port forwarding - docker container
  • 2 Solutions collect form web for “How to pull new docker images to openshift cluster nodes from remote private registry?”

    I believe the command may have changed somewhat with recent versions of origin. The following works for me:

    oc new-project my-project
    oc secrets new docker-pull-secret .dockerconfigjson=${HOME}/.docker/config.json --namespace=my-project
    oc secrets link default docker-pull-secret --for=pull --namespace=my-project
    

    The problem was in https://github.com/openshift/origin/issues/13122
    Master somehow managed to pull and extract images faster, while nodes had a timeout.

    Docker will be the best open platform for developers and sysadmins to build, ship, and run distributed applications.