This documentation needs to be updated to include how to reference a different registry/repository for the apps-operator and apps-synchronizer containers.By default, the registry is quay.io and the repository will be ibmresilient.You can change the registry and repository for the apps-synchronizer and apps-operator when you run the
"manageAppHost install" command. You specify them with --registry and --repository flags.e.g. manageAppHost install --registry <private registry> --repository <repository name> <other options>This only tells apphost where to pull the synchronizer and operator containers from.To tell apphost where to pull the app containers from, you should use manageAppHost registry
If I understand you correctly, you are getting the "x509 certificate signed by unknown authority" error when kubernetes is trying to pull the apps-synchronizer and apps-operator container, is that correct?Due to the fact that it seems TLS is required for your private registry, have you tried using the registries.yaml file as described here:https://rancher.com/docs/k3s/latest/en/installation/private-registry/
In this configuration, you can specify the path to the required certificate as well.