Rancher secrets. VAULT_SKIP_VERIFY doesn't work

asg1612 · February 21, 2017, 12:31pm

Hello,

I’m trying to configure Rancher secrets. I use Vault with self-signed certs.

When I use the vault command with the environment variable VAULT_SKIP_VERIFY=true works fine. But rancher server doesn’t work with this environment variable.

Rancher server throws the next error:
level=error msg=“Put https://10.36.156.168:8200/v1//transit/encrypt/rancher: x509: cannot validate certificate for 10.36.156.168 because it doesn’t contain any IP SANs”
It is the same error if I execute vault command without VAULT_SKIP_VERIFY environment variable:
Error checking seal status: Get https://10.36.156.168:8200/v1/sys/seal-status: x509: cannot validate certificate for 10.36.156.168 because it doesn’t contain any IP SANs

I launch Rancher server with this command:
sudo docker run -d --restart=unless-stopped -e VAULT_ADDR=https://10.36.156.168:8200 -e VAULT_TOKEN=xxxxxxxx-xxxxxx-xxxxxxxx -e VAULT_SKIP_VERIFY=true -p 8080:8080 --dns 10.36.11.238 rancher/server:v1.4.0 --db-host mysql.hsap.sacyl.es

I tried with:

VAULT_SKIP_VERIFY=true
VAULT_SKIP_VERIFY=True
VAULT_SKIP_VERIFY=“true”
VAULT_SKIP_VERIFY=“True”

But the same error…

I launch correctly Rancher server?

Topic		Replies	Views
Unable to get rancher cli to work with ssl rancher server container Rancher 1.x	0	2337	November 2, 2017
Let's Encrypt failed to start Rancher 1.x	3	1493	July 2, 2016
Rancher w/ SSL issues Rancher 1.x	0	620	August 12, 2016
Set secrets backend to Vault programatically? Rancher 1.x	0	617	April 17, 2018
HELP: How do I get docker TLS to work? Rancher 1.x	0	783	January 4, 2017

Rancher secrets. VAULT_SKIP_VERIFY doesn't work

Related Topics