Docker UCP Error: x509: certificate signed by unknown authority
519 views
Skip to first unread message
Hemant Gupta
May 9, 2016, 5:12:09 PM5/9/16
to docker-dev
I have recently upgraded from
However, I am getting the following message:
Docker UCP 1.0.3 to 1.1.0 version.However, I am getting the following message:
STDOUT:
STDERR: time="2016-05-09T20:10:31Z" level=info msg="Verifying your system is compatible with UCP"
time="2016-05-09T20:10:31Z" level=info msg="Your engine version 1.11.1-cs1 is compatible"
time="2016-05-09T20:10:31Z" level=info msg="All required images are present"
time="2016-05-09T20:10:31Z" level=info msg="Installing UCP with host address 10.211.130.108 - If this is incorrect, please specify an alternative address with the '--host-address' flag"
time="2016-05-09T20:10:31Z" level=info msg="Checking that required ports are available and accessible"
time="2016-05-09T20:10:34Z" level=info msg="Generating UCP Cluster Root CA"
time="2016-05-09T20:10:51Z" level=info msg="Generating UCP Client Root CA"
time="2016-05-09T20:10:58Z" level=info msg="Deploying UCP Containers"
**time="2016-05-09T20:11:01Z" level=error msg="error waiting for KV endpoint to be healthy: Get https://10.211.130.108:12379/health: x509: certificate signed by unknown authority (possibly because of \"crypto/rsa: verification error\" while trying to verify candidate authority certificate \"UCP Cluster Root CA\")"
time="2016-05-09T20:11:01Z" level=error msg="Failed to start KV store. Run \"docker logs ucp-kv\" for more details"**
time="2016-05-09T20:11:01Z" level=fatal msg="Get https://10.211.130.108:12379/health: x509: certificate signed by unknown authority (possibly because of \"crypto/rsa: verification error\" while trying to verify candidate authority certificate \"UCP Cluster Root CA\")"
---- End output of docker run --rm -i -v /var/run/docker.sock:/var/run/docker.sock --name ucp docker/ucp:1.1.0 install --host-address 10.211.130.108 ----
Ran docker run --rm -i -v /var/run/docker.sock:/var/run/docker.sock --name ucp docker/ucp:1.1.0 install --host-address 10.211.130.108 returned 1
Sebastiaan van Stijn
May 9, 2016, 6:33:16 PM5/9/16
to Hemant Gupta, docker-dev
Hi Hermant,
It looks like you are trying to install UCP on this host, rather than utilize an existing upgraded cluster. If this is the case, please try installing with the `--fresh-install` flag to clear up any previous volumes that might be left over by your previous UCP installation. If you were intending to add another node to your UCP cluster, please refer to how new nodes can be added with the `join` command at the UCP documentation https://docs.docker.com/ucp/
Hope this helps, but if you have more questions, let me know, then I'll try to answer them, or forward them to the team
- Sebastiaan van Stijn
(thaJeztah on GitHub)
--
You received this message because you are subscribed to the Google Groups "docker-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to docker-dev+...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Hemant Gupta
May 9, 2016, 7:31:52 PM5/9/16
to docker-dev, itshe...@gmail.com
Dear Sebastiaan,
After that I am running the following command:
I am running the following commands to clean up the previous volumes:
docker rm -f $(docker ps -qa) ; docker rmi -f $(docker images -qa) ; docker volume rm $(docker volume ls -q)docker run --rm -i -v /var/run/docker.sock:/var/run/docker.sock --name ucp docker/ucp:1.1.0 install
I am still getting the below error:
time="2016-05-09T23:29:14Z" level=info msg="Verifying your system is compatible with UCP"
time="2016-05-09T23:29:14Z" level=info msg="Your engine version 1.11.1-cs1 is compatible"
time="2016-05-09T23:29:14Z" level=info msg="All required images are present"
time="2016-05-09T23:29:14Z" level=info msg="Installing UCP with host address 10.211.130.108 - If this is incorrect, please specify an alternative address with the '--host-address' flag"
time="2016-05-09T23:29:15Z" level=info msg="Checking that required ports are available and accessible"
time="2016-05-09T23:29:18Z" level=info msg="Generating UCP Cluster Root CA"
time="2016-05-09T23:29:51Z" level=info msg="Generating UCP Client Root CA"
time="2016-05-09T23:30:00Z" level=info msg="Deploying UCP Containers"
time="2016-05-09T23:30:02Z" level=error msg="error waiting for KV endpoint to be healthy: Get https://10.211.130.108:12379/health: x509: certificate signed by unknown authority (possibly because of \"crypto/rsa: verification error\" while trying to verify candidate authority certificate \"UCP Cluster Root CA\")"
time="2016-05-09T23:30:02Z" level=error msg="Failed to start KV store. Run \"docker logs ucp-kv\" for more details"
time="2016-05-09T23:30:02Z" level=fatal msg="Get https://10.211.130.108:12379/health: x509: certificate signed by unknown authority (possibly because of \"crypto/rsa: verification error\" while trying to verify candidate authority certificate \"UCP Cluster Root CA\")"
Thanks,
Hemant
sebastiaa...@docker.com
May 9, 2016, 7:52:52 PM5/9/16
to Hemant Gupta, docker-dev
Which part of the documentation are you using for the installation? The "install in a sandbox" or "for production" section?
Note that this section explains how to upgrade an existing installation; https://docs.docker.com/ucp/installation/upgrade/
Sent from my iPad
Reply all
Reply to author
Forward
0 new messages