This message was deleted Rancher Users #general

Join Slack

This message was deleted.

# general

adamant-kite-43734

06/26/2023, 1:18 PM

This message was deleted.

hundreds-battery-84841

06/26/2023, 2:51 PM

@gorgeous-pizza-36569 Adding a trusted certificate authority to the rancher server container does not automatically propagate that trust to other components such as the cattle-cluster-agent or any workloads that rancher deploys.

hundreds-battery-84841

06/26/2023, 2:52 PM

I think is by design as each component including workloads in clusters managed by rancher is responsible for managing its own trust store. The cattle-cluster-agent, for instance, needs to be configured separately to trust additional CAs.

hundreds-battery-84841

06/26/2023, 2:53 PM

So typically what you do is add an additional trusted ca to the cattle-cluster-agent by modifying the deployment to include the additional ca certificates.

2 Views

Open in Slack

Previous Next