How to handle certificates for remote registry correctly #security


I want to configure a replication between harbor and a docker registry.
The docker registry is secured by self-signed certificates, which I copied to /etc/docker/certs.d/dockerregistry.mydomain/ (.cert , .crt files) on the harbor host.

But when I configure the registry in harbor with verify remote cert, the failure "failed to ping endpoint" occurs.

What is missing or what am I doing wrong? 

(I am using v2.0.1 and of course did a docker-compose down and up already)


maybe this is kind of the thing

but first of all it would be good to know, what needs to be done to make the "verify remote cert" work