Este contenido no está disponible en el idioma seleccionado.

Configure a CA file

Use this example to customize the default definition file to include a CA certificate to the additional-build-files section, move the file to the appropriate directory and, run the command to update the dynamic configuration of CA certificates to allow the system to trust this certificate.

Prerequisites

A custom CA certificate, for example rootCA.crt.

Note

Customizing the CA certificate using prepend_base means that the resulting CA configuration is displayed in all other build stages and the final image, because all other build stages inherit from the base image.

additional_build_files:
  # copy the CA public key into the build context, we will copy and use it in the base image later
  - src: files/rootCA.crt
    dest: configs

additional_build_steps:
  prepend_base:
    # copy a custom CA cert into the base image and recompute the trust database
    # because this is in "base", all stages will inherit (including the final EE)
    - COPY _build/configs/rootCA.crt /usr/share/pki/ca-trust-source/anchors
    - RUN update-ca-trust

options:
  package_manager_path: /usr/bin/microdnf  # downstream images use non-standard package manager

[galaxy]
server_list = automation_hub

RPM-based installations

Harden the platform security posture

Volver arriba

Este contenido no está disponible en el idioma seleccionado.

Configure a CA file

Aprender

Pruebe, compre y venda

Comunidades

Acerca de Red Hat

Hacer que el código abierto sea más inclusivo

Acerca de la documentación de Red Hat

Theme

Red Hat legal and privacy links

Red Hat legal and privacy links