This message was deleted.
# generala
adamant-kite-43734
05/24/2023, 1:57 PMThis message was deleted.
f
future-fountain-82544
05/24/2023, 1:58 PMI was able to successfully shell into the cattle-agent pod and
curl -ki <https://REDACTED/ping>future-fountain-82544
05/24/2023, 2:00 PMI noted that I had to add the -k to accept the certificate (even though it is a valid certificate) and I think it's because the container image may not have CA certs installed. I have the same problem using curl against https://google.com, so I think this is a red herring, but I figured I'd mention it anyway.
We have no TLS decryption proxying thing going on. This is direct internet access
e
eager-nightfall-87875
05/24/2023, 2:57 PMSince this was moved from one Rancher cluster to another, could it be possible that the k3s cluster somehow did not get an updated cert from the certmanager of the new Rancher cluster? Some legacy configs may still be there preventing the k3s cluster from joining appropriately. I will look deeper into it if I have time, but this might be a good jumping off point for you to look into.
eager-nightfall-87875
05/24/2023, 3:13 PMSo looking further into this, unfortunately, this is not supported (yet). I use yet loosely here because there has been an open feature request on this for quite some time.
https://github.com/rancher/rancher/issues/16471
It is also hinted at in the Rancher documentation this would be a no go: https://ranchermanager.docs.rancher.com/faq/rancher-is-no-longer-needed
f
future-fountain-82544
05/24/2023, 3:16 PMI actually somehow made it work, but I'm not sure
e
eager-nightfall-87875
05/24/2023, 3:16 PMlol, good for you!
eager-nightfall-87875
05/24/2023, 3:17 PMI am sure there are a bunch of people that would like to know how you made it work given it's still an open issue on Rancher github
eager-nightfall-87875
05/24/2023, 3:20 PMGlad to have been no help at all 😀
😆 1
f
future-fountain-82544
05/24/2023, 4:11 PMI tried a few things in various combinations and I'm not sure which combination worked:
• Delete the cluster in the new rancher
• Add the cluster in the new rancher
• Manually deleted the cattle-system namespace
• Ran the cluster cleanup, which didn't seem to work in any case; Several times I ran it with an invalid version (IE:
2.7.1v2.7.1curl $yaml_url | kubectl delete -f -9 Views