Specify TLS SAN when launching RKE2 Clusters via Rancher UI

nir · June 8, 2022, 12:10pm

Hi,
we’re currently setting up a new k8s cluster via RKE2 out of the Rancher UI and just hit this road block:

When running with 3 master servers, we obviously need some form of LB in front of them. After setting up the LB, kubectl complains about the certificates: Unable to connect to the server: x509: certificate is valid for 127.0.0.1, ::1, [...], not [...]

After looking around for a bit, I found the option --tls-san when deploying the RKE2 Server manually, which allows to set additonal SANs the certs are valid for.

Is there a way to specify more SANs when deploying the new cluster from the Rancher UI?

Thanks for the help, highly appreciated!

nir · June 8, 2022, 12:29pm

Argh, totally missed the obvious.

The SANs can be set at the “Networking” Tab at the Cluster Configuration screen.

Sorry for creating this topic a bit too quickly
I guess I’ll leave it up for people who read as badly as me

Topic		Replies	Views
Problem with Rancher 2.8.3, Server node local Rancher	0	33	September 17, 2024
add SAN's to cluster config with rancher	0	23	August 22, 2024
Certificates updated ==> disaster happened Rancher	0	747	March 14, 2022
Deploying RKE Config Changes Rancher	0	619	July 17, 2018
RKE cluster administration not accessible after changing SSL certificate Rancher	5	2182	January 14, 2021

Specify TLS SAN when launching RKE2 Clusters via Rancher UI

Related Topics