Rancher 2.0 HA 3 node install w/ lets encrypt ssl

As per the guide (https://rancher.com/docs/rancher/v2.x/en/installation/server-installation/ha-server-install/), what are the install options for HA deployment and using lets encrypt?

The RKE templates only 2 options:


For single node (https://rancher.com/docs/rancher/v2.x/en/installation/ssl-config/#using-automatically-requested-let-s-encrypt-certificates) seems straight forward.

So just wondering how to implement let’s encrypt with HA deployment.



I have followed the tutorial https://rancher.com/docs/rancher/v2.x/en/installation/server-installation/ha-server-install/ and have chosen the 3-node-passthrough.yml configuration file. On a different machine I requested a Let’s encrypt certificate and exported it. From that I used the cert.pem and cert.key and replaced it in the .yml configuration file.

After that I runned the rke up command. The installation was successful, at least in the eyes of the installer. After accessing rancher.example.com (I have the green lock icon in the addressbar of the browser (with Let’s Encrypt), but always geht an 503 error. The error will be delivered from one the nginx nodes and not from the nginx load balancer set up at the beginning of the tutorial.

Not sure whether this happens because of the Let’s encrypt certificate or other configuration error.

How can I debug this issue? Which log message files are associated to this issue?