Hosts Disconnected After SSL Certificate Renewal

Jonathan_Goldberg · September 5, 2019, 12:59am

Hello,

We use rancher/server:v1.6.18 with an nginx container terminating the SSL handshake. When we update nginx with a new SSL certificate (old one is expiring) and restart the nginx container, we can access the Rancher server via web browser and confirm the new SSL certificate is in place.

However, all of our Hosts immediately disconnect and never reconnect. Reverting the SSL certificate in the nginx container with a subsequent restart of the nginx container restores all of the Host connections.

Must some other configuration be done to use a new SSL certificate, which will allow the Hosts to reconnect with the Rancher server?

Please let me know if you need more details. Thank you for the help.

mariohbrino · October 4, 2023, 8:18pm

I’m also having the same issue on a legacy system that I’m working with. It seems they’ve used a self-signed certificate, and unfortunately there is not much information on how it was handled on the pass, I’ve tried to handle it with let’s encrypt.

Have you been able to resolve this issue?

mariohbrino · October 8, 2023, 5:07am

I was able to resolve the issue by using a certificate authority (paid solution) to validate a self-signed SSL Certificate, on my case the certificate expired and I tried to use Let’ Encrypt and it did not work as expected. As an alternative I was able to implement a fresh installation with Cloudflare SSL certificate.

Topic		Replies	Views
Rancher 1.6.30 and SSL (new Let's Encrypt) error Rancher 1.x	21	2199	December 6, 2021
How to upgrade Rancher agents to use SSL? Rancher 1.x	3	3901	June 28, 2018
Add host - https - cert issue Rancher 1.x	1	1243	August 8, 2018
Configure SSL on Rancher using Nginx	0	1052	December 10, 2018
Rancher 2.2.2 certificate expiration issues Rancher	5	10108	March 8, 2023

Hosts Disconnected After SSL Certificate Renewal

Related topics