Question about certificates signed by a internal CA

It’s supported use a certificate signed by a internal certificate authority on rancher server ? How to add the internal CA chain to the rancher containers ?

Thanks

Hi Gabriel,

Yes, for single node you can see here how you can use private CA:
https://rancher.com/docs/rancher/v2.x/en/installation/single-node/

If you deploy Rancher on k8s with helm for example you can set privateCA=true:

helm install --name rancher rancher-latest/rancher --namespace cattle-system --set hostname=node2 --set ingress.tls.source=secret --set privateCA=true

Have a look on this implementation, I’m using privateCA:


Cheers,
Arash

Please see the docs on using private CA on https://rancher.com/docs/rancher/v2.x/en/installation/ha/helm-rancher/#certificates-from-files and https://rancher.com/docs/rancher/v2.x/en/installation/ha/helm-rancher/tls-secrets/