Setting up additional trusted certificate authorities for builds

The procedure requires a cluster administrator to create a and add additional CAs as keys in the ConfigMap.

• The ConfigMap must be created in the openshift-config namespace.

You can add certificate authorities (CA) to the cluster for use when pushing and pulling images with the following procedure.

Prerequisites

• You must have access to the public certificates of the registry, usually a hostname/ca.crt file located in the directory.

Procedure

1. Update the cluster image configuration:

   $ oc patch image.config.openshift.io/cluster --patch '{"spec":{"additionalTrustedCA":{"name":"registry-cas"}}}' --type=merge

Additional resources

• Create a ConfigMap