Update on using self-signed certs with registry

52628dcf · Abubakar Siddiq Ango · 1a1f28fe · 52628dcf
Commit 52628dcf authored Feb 11, 2019 by Abubakar Siddiq Ango
Hide whitespace changes
Inline Side-by-side

Showing with 10 additions and 3 deletions

doc/administration/container_registry.md doc/administration/container_registry.md +10 -3

No files found.
--- a/doc/administration/container_registry.md
+++ b/doc/administration/container_registry.md
@@ -600,9 +600,16 @@ The Docker daemon running the command expects a cert signed by a recognized CA,
 thus the error above.

 While GitLab doesn't support using self-signed certificates with Container
-Registry out of the box, it is possible to make it work if you follow
-[Docker's documentation][docker-insecure-self-signed]. You may find some additional
-information in [issue 18239][ce-18239].
+Registry out of the box, it is possible to make it work by [instructing the docker-daemon to trust the self-signed certificates][docker-insecure-self-signed], mounting the docker-daemon and setting `privileged = false` in the runner's `config.toml`. Setting `privileged = true` takes precedence over the docker-daemon.
+
+```
+  [runners.docker]
+    image = "ruby:2.1"
+    privileged = false
+    volumes = ["/var/run/docker.sock:/var/run/docker.sock", "/cache"]
+```
+
+You may find some additional information in [issue 18239][ce-18239].

 ## Troubleshooting