How to pull new docker images to openshift cluster nodes from remote private registry?

All steps specified in (and other sources) worked perfectly on master, but it does not help me to pull from nodes.


  • Can i use watch in nodemon or pm2 in docker with file in shard drive?
  • Get Swarm node IP address from a container using API?
  • Configuring external access to the GAE app under the google/cloud-sdk docker container
  • GitLab-CI multi runner start docker container
  • HTTPS on Elastic Beanstalk (Docker Multi-container)
  • Invalid repository name while pulling an image in docker
    1. Logged in on master and two nodes to registry: docker login

    2. Created new secret on master with: oc secrets new my.registry
      (can’t do the same on
      nodes, because they do not have oc utility)

    3. In my current project added secret for default account: oc secrets
      add serviceaccount/default secrets/my.registry –for=pull

    Now when I’m naking a new deployment, the pods created on master will start perfectly well (master will be able to pull needed images), but pods on nodes will fail to start unless I manually pull images on them with docker pull.

    So how can I make all nodes from my openshift (origin) cluster pull images with specified default account?

  • Docker --tag vs --name clarification
  • datapower cannot be installed in docker
  • Docker: is it possible to use overlayed backing filesystem?
  • Silently Installing pecl modules (e.g. pecl_http) Inside a Docker Container?
  • How to remove docker completely from ubuntu 14.04
  • how to handle redirection url in port forwarding - docker container
  • 2 Solutions collect form web for “How to pull new docker images to openshift cluster nodes from remote private registry?”

    I believe the command may have changed somewhat with recent versions of origin. The following works for me:

    oc new-project my-project
    oc secrets new docker-pull-secret .dockerconfigjson=${HOME}/.docker/config.json --namespace=my-project
    oc secrets link default docker-pull-secret --for=pull --namespace=my-project

    The problem was in
    Master somehow managed to pull and extract images faster, while nodes had a timeout.

    Docker will be the best open platform for developers and sysadmins to build, ship, and run distributed applications.