Docker config file location on windows to, e.g., enable insecure registry / docker options

Question

I want to add an insecure-registry for testing purposes on a Windows 10 machine for Docker. Unfortunately I was not able to find any information where the usual /etc/docker/default config file is located on Windows.

The error you get when trying to pull from an insecure registry without adding it to the options is:

Failed to tls handshake with x.x.x.x cannot validate certificate for x.x.x.x because it doesn't contain any IP SANs

I did find a way which looks promising:

edit C:/Users/Username/.docker/machine/default/config.json
add the registry : "InsecureRegistry": ["x.x.x.x:port"]
restart docker with (?) docker-machine.exe restart default

but now I get this error:

Get https://x.x.x.x:port/v1/_ping: x509: cannot validate certificate for x.x.x.x because it doesn't contain any IP SANs

(https://akrambenaissi.com/2015/11/17/addingediting-insecure-registry-to-docker-machine-afterwards/)

Update: After restarting Windows it worked:

I received "unauthorized: authentication required"
thus > docker login x.x.x.x:port and now it's working!

hb0 · Accepted Answer · 2019-01-31T13:41:49.167

26

The following worked for me:

edit C:/Users/Username/.docker/machine/default/config.json
add the registry : "InsecureRegistry": ["x.x.x.x:port"]
restart docker (see comment below)*
restart windows (there must be a better way ;-)
docker login x.x.x.x:port

edited Jan 31 '19 at 13:41

answered May 09 '16 at 10:14

hb0

3,350
3
30
48

3

on windows10 with current docker-desktop version 2.0.0.2 (30215); right-click: restart... on the icon in the taskbar works fine to restart docker daemon. – Chris Maes Jan 31 '19 at 11:52
1

`C:/Users/username/.docker/daemon.json` – hlovdal Mar 23 '21 at 13:29

score 1 · Answer 2 · answered May 23 '18 at 10:43

After restarting my computer after changing config.json, I still wasn't able to connect to our insecure registry. I am using a self-named docker-machine (so, not default), maybe that has something to do with it. What did work was, after changing config.json and restarting the docker-machine (not my computer), executing the docker-machine regenerate-certs [machinename] command.

Before that command, 'docker info' did not mention the new registry, after regenerating the certs it did.

running regenerate-certs was the way for me, helped my Docker to take the changes without a computer reboot — Uriel Arvizu, Dec 29 '20 at 17:58

score 0 · Answer 3 · answered Apr 27 '17 at 08:45

The method from B.L. is working well. It's true that "docker-machine.exe restart" does not work, and you can check it with "docker info": you should see in Insecure Registries the entry that you added. So restarting Windows was the only way for me too to make it appear. And then pushing was working (so good!)

Port number is not mandatory, and "InsecureRegistry": ["x.x.x.x"] is also working. Hope this will help!

score 0 · Answer 4 · answered Sep 27 '19 at 19:26

My setup used Docker Toolbox, so hb0's answer helped me, but the InsecureRegistry property in the config.json file was under HostOptions.EngineOptions on my installation.

My config.json file path was also slightly different. Mine was in C:/Users/YOUR_USERNAME/.docker/machine/machines/default/config.json (Note the extra machines directory).

score 0 · Answer 5 · edited Jan 16 '23 at 17:11

0

The following worked for me:

edit C:/Users/Username/.docker/daemon.json
add the registry : "insecure-registries": ["x.x.x.x:port"]
restart docker

edited Jan 16 '23 at 17:11

helvete

2,455
13
33
37

answered Jan 13 '23 at 10:52

Xander Zi

1
1

Docker config file location on windows to, e.g., enable insecure registry / docker options

5 Answers5