This message was deleted Rancher Users #general

Join Slack

This message was deleted.

# general

adamant-kite-43734

03/24/2023, 9:47 AM

This message was deleted.

big-hydrogen-97240

03/24/2023, 11:41 AM

Firstly, you don’t have the node agent daemonset because you’re using RKE2 for your downstream clusters. The node agent is only used with RKE. Second, step 4 looks like it is designed to get the agents to reconnect and get the new deployment from Rancher. That deployment should have the new CA checksum in it, but it sounds like it does not.

👀 1

big-hydrogen-97240

03/24/2023, 11:43 AM

I know that doesn’t sound very helpful, but inspecting the secrets and Rancher settings will hopefully tell you where the problem is.

gifted-agent-35161

03/24/2023, 12:36 PM

Thanks for your answer 🙂 I'll check my secrets in cattle-system namespace. Do you know if secrets

tls-rancher

and

tls-rancher-internal-ca

are relevant ? Otherwise i've already set up

tls-ca

with the new CA certificate and

tls-rancher-ingress

with the new key/cert.

36 Views

Open in Slack

Previous Next