Yes, you will need to add a non-root user to permission group “docker”. “root” already has permission to use the Docker API socket. You can see the socket by running docker context ls.
On my system you can see that group has write permission on the socket.
❯ ls -l /var/run/docker.sock
srw-rw---- 1 root docker 0 Mar 29 15:25 /var/run/docker.sock=
If I may, it’s a good idea to run commands and services as a non-root user. Your RedHat OS has good support for sudo, and I think it will help you out in the long run to run as root selectively instead of by default.
The Ziti Controller doesn’t need to run as root inside the container, and keep in mind that the UID inside the container has the same privileges as UID outside the container.
In the lab I sent with CentOS 7.8 I made sure it will work. I ran the quickstart there as non-root, and I see the same errors you saw when I run the quickstart as root.
Thanks for your help it now fully works in our offline lab just like the local setup I have written the steps to install both options and sent to our integration engineer so that he can do what he wants with it. Appreciate everything
FYI @cmbryner you might be interested in another post I made for another user around docker which I think you'll want/need... It shows you how to use docker "anywhere" and how to override the advertised addresses...