Question about certificates signed by a internal CA

It’s supported use a certificate signed by a internal certificate authority on rancher server ? How to add the internal CA chain to the rancher containers ?


Hi Gabriel,

Yes, for single node you can see here how you can use private CA:

If you deploy Rancher on k8s with helm for example you can set privateCA=true:

helm install --name rancher rancher-latest/rancher --namespace cattle-system --set hostname=node2 --set ingress.tls.source=secret --set privateCA=true

Have a look on this implementation, I’m using privateCA:


Please see the docs on using private CA on and