I used java to call Rancher 2.0 API,
But got error message: " unable to find valid certification path to requested target".
It’s about ssl key problem.
Where is rancher 2.0 default CA root certificates ?
I want to add ssl key to java keystore.
I used java to call Rancher 2.0 API,
But got error message: " unable to find valid certification path to requested target".
It’s about ssl key problem.
Where is rancher 2.0 default CA root certificates ?
I want to add ssl key to java keystore.
I’m not 100% sure, but try looking in
/etc/rancher/ssl inside the container
To solve this problem we went down the path of getting a “real” cert from a cert provider and using that for our Rancher server. You can then map it during Rancher startup like this
sudo docker run -d \
--restart=unless-stopped \
--name rancher \
--log-driver json-
file
\
--log-opt max-size=100m \
--log-opt max-
file
=3 \
-p 80:80 -p 443:443 \
-e HTTP_PROXY=
"http://wall.ad.selinc.com:8080/"
\
-e HTTPS_PROXY=
"http://wall.ad.selinc.com:8080/"
\
-e NO_PROXY=
"localhost,127.0.0.1,0.0.0.0,localaddress,selinc.com,10.0.0.0/8"
\
-
v
/var/lib/rancher
:
/var/lib/rancher
\
-
v
/etc/rancher/ssl/cert
.pem:
/etc/rancher/ssl/cert
.pem \
-
v
/etc/rancher/ssl/key
.pem:
/etc/rancher/ssl/key
.pem \
sel-docker.artifactory.metro.ad.selinc.com
/rancher/rancher
:v2.0.8-rc1 --no-cacerts