Anyone know how to set up private registries for CAPI provisioned clusters? I see that it is in the spec for the RKE2ConfigTemplate (in

.spec.template.spec.privateRegistriesConfig.configs

but I don't see any information about how that is supposed to work. Ideally I want to update the containerd information for the registry. Am I missing the docs somewhere, or can someone point out what I could do?

are you looking for the docs on the structure of that specific field? or are you just asking how it works for rke2 in general?

Right, so I see that, but I don't think that is what the RKE2ConfigTemplate takes (or is it)?

Can you link to which specific capi provider you’re using?

it would appear to take the same structure as rke2 itself. I don’t see anything about secret references.

it appears to be nested under configs.additionalProperties.authSecret, at least if this CRD is to be believed.

so I can get it to be accepted, but it doesn't actually work

I would look here, instead of at the CRD yaml: https://github.com/rancher/cluster-api-provider-rke2/blob/v0.13.0/bootstrap/api/v1beta1/rke2config_types.go#L365

yes

is registries.yaml getting created on the nodes? that’s the first place I’d look.

i'll take a look tommorow have to head out, but where would that be?

exactly where the rke2 docs say it is

got it