Docker pull 時遇到x509 certificate signed by unknown authority的解決方法

# Docker pull 時遇到x509 certificate signed by unknown authority的解決方法 [參考網站](https://ephrain.net/centos-%E5%9F%B7%E8%A1%8C-docker-login-%E6%99%82%EF%BC%8C%E5%87%BA%E7%8F%BE-certificate-signed-by-unknown-authority-%E7%9A%84%E9%8C%AF%E8%AA%A4%E8%A8%8A%E6%81%AF%EF%BC%9F/) 今天docker pull時遇到x509 certificate signed by unknown authority 錯誤, 看完參考網站後可知是缺少憑證問題。 ![](https://i.imgur.com/Tu2Xd2y.jpg) 所以就先按照步驟查出缺少的憑證 ```xml=\ openssl s_client -connect registry-1.docker.io:443 -showcerts ``` ![](https://i.imgur.com/6WeJl02.jpg) 找出Certificate chain 數字最大的憑證內容從-----BEGIN CERTIFICATE----- 一直複製到 -----END CERTIFICATE----- 先存在某個txt檔上然後去curl 我們連過去的網址 ``` curl -k -v https://registry-1.docker.io/v2/ ``` ![](https://i.imgur.com/LVyMRyt.jpg) 可以看到我們本機信任憑證CAfile的存放在位置在 ``` /etc/ssl/certs/ca-certificates.crt ``` 接著把剛剛複製下來憑證,貼到/etc/ssl/certs/ca-certificates.crt 最下面 ![](https://i.imgur.com/RV9k0rZ.jpg) 然後重啟docker 問題就解決了 ![](https://i.imgur.com/iYkJkHG.jpg) ###### tags: `Docker`