linux 离线安装harbor
环境准备
harbor环境,首先安装docker,再次安装docker-compose
docker+docker-compose
一、linux 离线安装harbor
下载harbor安装包
https://github.com/goharbor/harbor/tags
上传harbor安装包并解压
tar -xf harbor-offline-installer-v2.9.0.tgz
配置harbor
cd /opt/harbor
cp harbor.yml.tmpl harbor.yml
修改配置文件
hostname: IP地址或者域名
harbor_admin_password: Harbor12345
data_volume: /opt/hbdata
#开启https配置,需要生成证书
# https related config
https:
# https port for harbor, default is 443
port: 443
# The path of cert and key files for nginx
certificate: /your/certificate/path
private_key: /your/private/key/path
配置harborssl证书
mkdir /opt/hbssl
openssl genrsa -out ca.key 4096
openssl req -x509 -new -nodes -sha512 -days 3650 \
-subj "/C=CN/ST=Hanan/L=Zhengzhou/O=cib/OU=it/CN=IP" \
-key ca.key \
-out ca.crt
openssl genrsa -out IP.key 4096
openssl req -sha512 -new \
-subj "/C=CN/ST=Hanan/L=Zhengzhou/O=cib/OU=it/CN=IP" \
-key IP.key \
-out IP.csr
cat > v3.ext <<-EOF
authorityKeyIdentifier=keyid,issuer
basicConstraints=CA:FALSE
keyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment
extendedKeyUsage = serverAuth
subjectAltName = @alt_names
[alt_names]
DNS=IP
DNS1=223.5.5.5
DNS2=223.6.6.6
EOF
openssl x509 -req -sha512 -days 3650 \
-extfile v3.ext \
-CA ca.crt -CAkey ca.key -CAcreateserial \
-in IP.csr \
-out IP.crt
harbor数据目录
mkdir -p /opt/hbdata
修改配置文件对应位置
vim harbor.yml
初始化harbor
cd /opt/harbor
./prepare
./install.sh
配置镜像仓库IP和配置docker镜像源
vim /etc/docker/daemon.json
{
"insecure-registries": ["IP或者域名"],
"registry-mirrors": ["docker 镜像地址"]
}
重启docker和harbor
systemctl restart docker
docker-compose restart
二、登录成功,安装完成