https://rancher.com/ logo
Join Slack
Powered by
This message was deleted.
# rke2
a
This message was deleted.
t
we use ubuntu 22.04 and as part of our setup we add the authority to those servers, running the 
update-ca-certificates
to add it to the trusted list for ubuntu, but it still seems to be having issues in RKE2
p
Did you install your custom CA on the rke2 hosts and run 
update-ca-certificates
?
t
Yeah we added the custom ca to the correct spot and ran the update command
p
and this is a kubectl client getting the error? So do you have the CA chain installed on your client as well?
t
Yeah it’s kubectl on my local machine, and I do have the CA imported into my local machine
interestingly enough if I run
Copy code
kubectl --insecure-skip-tls-verify cluster-info dump
I get this: 
Error from server (NotFound): the server could not find the requested resource (get nodes)
this looks almost like the nginx server isn't forwarding the request correctly? but I followed the instructions in the linked doc, so I'm not sure why that would be
it looks like the line for the server was missing the :6443 at the end for that last test, now when I try it I get this: 
error: You must be logged in to the server (the server has asked for the client to provide credentials)
which is odd because I'm using the same rke2.yaml file from the server, and if I replace the proxy url with our first rancher node it works file.
28 Views
Open in Slack
PreviousNext
Powered by