How to setup private docker registry securely?

I am able to setup private docker registry insecurely and able to pull and push from remote hosts. However, i would like to change it to using secure connection. I have followed the instruction at https://docs.docker.com/articles/https/ but i am confused which steps to be followed at docker host running registry and which are to be executed at remote docker machine? Please help!!!

Thanks in advance

  • Docker run on sub domains
  • How can I connect to MongoDB on a Dokku host?
  • Add a volume to Docker, but exclude a sub-folder
  • MongoDB URL in MeteorD
  • How can I install docker toolbox on windows 7
  • Docker Alpine linux package masked
  • Print timestamps in Docker Compose logs
  • Identity Server 4 running within docker container Exception: Unable to load DLL 'System.Security.Cryptography.Native.OpenSsl'
  • How to create a graph database in TinkerPop/Rextser using the Rexster Docker image and Bulbs?
  • Docker-compose is not generating log file for spring boot application
  • Docker container has trouble mounting volume with Jenkins
  • Docker nodejs not found
  • One Solution collect form web for “How to setup private docker registry securely?”

    The recommended way is to secure your registry using nginx for SSL-termination, with a valid SSL certificate.

    Here https://github.com/docker/docker-registry/tree/master/contrib/nginx you will find sample nginx configuration to achieve that (on the registry host, obviously).

    In case you can’t/won’t use a valid SSL certificate, you can still instruct your docker daemon hosts to either trust that certificate, or ignore cert validation errors (see here for more: https://docs.docker.com/reference/commandline/cli/#insecure-registries)

    Hope that helps.

    Docker will be the best open platform for developers and sysadmins to build, ship, and run distributed applications.