我在尝试使用Terraform时有以下问题。
我尝试通过企业代理使用Terraform。
所以我设置了https_proxy env变量。
但是,企业代理人作为"中间人"(病毒的解析页面...),并配置为我们企业自己的权威发行的安全服务器证书。
看来Terraform无法连接到(HTTPS)注册表,因为此CA根证书不信任。
有没有办法将Terraform配置为使用(在Windows)下使用自定义CA root Trustore?
Bellow是我获得Terraform尝试连接(在Init阶段)
的错误<!-- language: none -->
> terraform.exe init
Initializing provider plugins...
- Checking for available provider plugins on https://releases.hashicorp.com...
Error installing provider "aws": Get https://releases.hashicorp.com/terraform-provider-aws/: net/http: TLS handshake timeout.
Terraform analyses the configuration and state and automatically downloads
plugins for the providers used. However, when attempting to download this
plugin an unexpected error occured.
This may be caused if for some reason Terraform is unable to reach the
plugin repository. The repository may be unreachable if access is blocked
by a firewall.
If automatic installation is not possible or desirable in your environment,
you may alternatively manually install plugins by downloading a suitable
distribution package and placing the plugin's executable file in the
following directory:
terraform.d/plugins/windows_amd64
最后,信托基地没有原因。
问题是由于将https_proxy env设置为https url而不是http。
现在,它可以与Windows Trust的自定义根证书以及NTLM身份验证一起使用。