https://rancher.com/ logo
Join Slack
Powered by
This message was deleted.
# rke2
a
This message was deleted.
s
helm install rancher rancher-latest/rancher --create-namespace --namespace cattle-system --set hostname=rancher.central.non-prod.rancher.prgx.com --set bootstrapPassword=Password --set replicas=1 --set global.cattle.psp.enabled=false --version=2.7.5 --set ingress.tls.source=secret --set privateCA=true using the above command to deploy rancher it is getting deployed but when i am trying to deploy downstream cluster its getting stuck at the waiting for the cluster agent i have checked the pods on the downstream node sit shows nginx metrics and snapshots pods in pending state due to the taints on control plane . i eve try to remove those taints from the control plane nodes of downstream cluster that makes all the pods in the runnning staate but the downstream node stays stuck in waiting for cluster agent @creamy-pencil-82913 any guidance here please?
h
Did you also do this: 
kubectl -n cattle-system create secret generic tls-ca --from-file=cacerts.pem
https://ranchermanager.docs.rancher.com/getting-started/installation-and-upgrade/resources/add-tls-secrets#using-a-private-ca-signed-certificate
After helm command you have to create secret for the cacerts
s
yes i have done that
but the thing is i have a loadbalancer on top of my 3 ctl plane nodes of centralised cluster
and i think the cluster agent is trying to go through the loadbalancer
ip and there it is not able to communicate through the ip but the fqdn
oh my bad the websocket option was not enabled on the loadbalancer thats why the cluster agent was not able to communicate through a tunnel to register itself
Open in Slack
PreviousNext
Powered by