linux 离线安装harbor

环境准备

harbor环境，首先安装docker，再次安装docker-compose
docker+docker-compose

一、linux 离线安装harbor

下载harbor安装包

https://github.com/goharbor/harbor/tags

上传harbor安装包并解压

tar -xf harbor-offline-installer-v2.9.0.tgz

配置harbor

cd /opt/harbor

cp harbor.yml.tmpl harbor.yml

修改配置文件

hostname: IP地址或者域名
harbor_admin_password: Harbor12345
data_volume: /opt/hbdata
#开启https配置，需要生成证书
# https related config
https:
# https port for harbor, default is 443
 port: 443
# The path of cert and key files for nginx
certificate: /your/certificate/path
private_key: /your/private/key/path

配置harborssl证书

mkdir /opt/hbssl
openssl genrsa -out ca.key 4096
openssl req -x509 -new -nodes -sha512 -days 3650 \
-subj "/C=CN/ST=Hanan/L=Zhengzhou/O=cib/OU=it/CN=IP" \
-key ca.key \
-out ca.crt

openssl genrsa -out IP.key 4096

openssl req -sha512 -new \
-subj "/C=CN/ST=Hanan/L=Zhengzhou/O=cib/OU=it/CN=IP" \
-key IP.key \
-out IP.csr

cat > v3.ext <<-EOF
authorityKeyIdentifier=keyid,issuer
basicConstraints=CA:FALSE
keyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment
extendedKeyUsage = serverAuth
subjectAltName = @alt_names
[alt_names]
DNS=IP
DNS1=223.5.5.5
DNS2=223.6.6.6
EOF

openssl x509 -req -sha512 -days 3650 \
-extfile v3.ext \
-CA ca.crt -CAkey ca.key -CAcreateserial \
-in IP.csr \
-out IP.crt

harbor数据目录

mkdir -p /opt/hbdata

修改配置文件对应位置

vim harbor.yml

初始化harbor

cd  /opt/harbor
./prepare
./install.sh

配置镜像仓库IP和配置docker镜像源

vim /etc/docker/daemon.json

{
   
  "insecure-registries": ["IP或者域名"],
  "registry-mirrors": ["docker 镜像地址"]
}

重启docker和harbor

 systemctl restart docker
 docker-compose restart

二、登录成功，安装完成