It’s supported use a certificate signed by a internal certificate authority on rancher server ? How to add the internal CA chain to the rancher containers ?
Thanks
Hi Gabriel,
Yes, for single node you can see here how you can use private CA:
https://rancher.com/docs/rancher/v2.x/en/installation/single-node/
If you deploy Rancher on k8s with helm for example you can set privateCA=true:
helm install --name rancher rancher-latest/rancher --namespace cattle-system --set hostname=node2 --set ingress.tls.source=secret --set privateCA=true
Have a look on this implementation, I’m using privateCA:
Cheers,
Arash
Please see the docs on using private CA on https://rancher.com/docs/rancher/v2.x/en/installation/ha/helm-rancher/#certificates-from-files and https://rancher.com/docs/rancher/v2.x/en/installation/ha/helm-rancher/tls-secrets/