K
Q

Rancher Setup RKE With Signed Certs

4/15/2020

After some research I have found that is possible to create csr's using the rke client as stated in this guide: https://rancher.com/docs/rke/latest/en/cert-mgmt/

Would it be possible to deploy a RKE cluster using Rancher 2.x with signed certs or does this have to be done using the RKE client?

Thanks

-- grimm-muncha
kubernetes
rancher

Similar Questions

Spring eureka self register on kubernetes
Inter-Cluster Service Discovery in Bare Metal Kubernetes Machines
How to enable basic security for Spring Cloud Data Flow Server on kubernetes?
How to edit ingress hosts?

1 Answer

4/16/2020

As far as i checked in this github issue

as mentioned by @deniseschannon in above link

In Rancher 2.2 and RKE 0.2.0, we've only added the ability to bring your own certs to clusters created with the RKE CLI.

https://rancher.com/docs/rke/latest/en/installation/certs/#generating-certificate-signing-requests-csrs-and-keys

Additionaly you can check this rancher link about Certificates

Available as of v0.2.0

By default, Kubernetes clusters require certificates and RKE auto-generates the certificates for all the Kubernetes services. RKE can also use custom certificates for these Kubernetes services.

By default, Kubernetes clusters require certificates and RKE auto-generates the certificates for all cluster components. You can also use custom certificates. After the Kubernetes cluster is deployed, you can manage these auto-generated certificates.

Based on that I would say it's possible only with RKE.

-- jt97
Source: StackOverflow