Podman login not working with Nexus OSS 3.28.0-0

Sonatype Nexus Repository
, , ,
1

Hi Team,

I am able to login to my private docker registry (Nexus OSS 3.28.0-0) from docker but the same thing not working with podman, same with anonymous pull, works with docker but not with podman.

any help will be appreciated

docker login:
docker login <Internal_server>:<internal_port>
Authenticating with existing credentials…
WARNING! Your password will be stored unencrypted in /home/cexadmin/.docker/config.json.
Configure a credential helper to remove this warning. See

Login Succeeded

Podman login:

podman login

Username: xxxxx
Password:
Error: error authenticating creds for “”: error pinging docker registry: Get /v2/: Forbidden

podman pull /image:version

Trying to pull /image:version…
Get /v2/: Forbidden
Error: error pulling image “/image:version”: unable to pull /image:version: unable to pull image: Error initializing source: error pinging docker registry : Get /v2/: Forbidden

I am able to login docker.io using podman

podman login docker --log-level=debug

DEBU[0000] Credentials not found
Username: xxxx
Password:
DEBU[0025] Looking for TLS certificates and private keys in /etc/docker/certs.d/registry-1.docker.io
DEBU[0025] GET /v2/
DEBU[0026] Ping /v2/ status 401
DEBU[0026] GET /token?account=xxxx&service=registry.docker.io
DEBU[0026] GET
Login Succeeded!

2

I’m experiencing the same issue: From my Mac with Podman Desktop 1.15 and Podman 5.3.1, I can login to the Nexus Repository but neither pull nor push images due to “Forbidden”:

podman --log-level=DEBUG pull nexus-test.example.com:5000/collabora/code:24.04.12.2.1
INFO[0000] podman filtering at log level debug
DEBU[0000] Called pull.PersistentPreRunE(podman --log-level=DEBUG pull nexus-test.example.com:5000/collabora/code:24.04.12.2.1)
DEBU[0000] SSH Ident Key "/Users/ich/.local/share/containers/podman/machine/machine" SHA256:GMJlu382oB+MPe+5QDuwL5raxhI4jcnQ7aQgV3lDYjM ssh-ed25519
DEBU[0000] DoRequest Method: GET URI: http://d/v5.3.1/libpod/_ping
DEBU[0000] Loading registries configuration "/etc/containers/registries.conf"
DEBU[0000] DoRequest Method: POST URI: http://d/v5.3.1/libpod/images/pull
Trying to pull nexus-test.example.com:5000/collabora/code:24.04.12.2.1...
Error: initializing source docker://nexus-test.example.com:5000/collabora/code:24.04.12.2.1: pinging container registry nexus-test.example.com:5000: Get "https://nexus-test.example.com:5000/v2/": Forbidden
DEBU[0000] Shutting down engines

@ajay.prajapati Have you ever solved that issue?

On a Linux system, pulling from Nexus Repository using podman worked.

3

If you haven’t, make sure you have the Docker Bearer Realm enabled in Nexus.

If you’re using anonymous you need to enable it on the repository.

https://help.sonatype.com/en/docker-authentication.html

4

I’ve found the cause: The message “Forbidden” comes from my corporate proxy: Podman Desktop wrongly configured the no_proxy variables with wildcards and semicolons, that isn’t appropriate for a Linux based Podman VM.