This message was deleted Rancher Users #rke2

Join Slack Communities

This message was deleted.

# rke2

adamant-kite-43734

01/16/2024, 12:11 PM

This message was deleted.

brash-belgium-3672

01/16/2024, 12:49 PM

Hi, Jonas. I have experienced a similar issue before. I have found that removing the

certificate-authority-data

information from the KUBECONFIG file that you are using generally resolves this (make a backup first). Let me know if this works or not.

refined-scientist-20236

01/16/2024, 1:43 PM

mmh i not sure if that helps - it fails also inside the cluster for example in the rancher ui

important-activity-72202

01/17/2024, 4:16 PM

Does it work if you tell the client to ignore if certificate is valid?

important-activity-72202

01/17/2024, 4:19 PM

For example:

kubectl get nodes --insecure-skip-tls-verify

important-activity-72202

01/17/2024, 4:22 PM

In our cluster, the SAN domains are setup in /etc/rancher/rke2/config.yaml. Check out this page: https://docs.rke2.io/install/configuration

refined-scientist-20236

01/19/2024, 7:00 AM

The SAN is correctly configured inside of /etc/rancher/rke2/config.yaml - it seems it use an another certificate for that - and the Rancher UI Client has nothing todo with the local kubeconfig. I already rotated all certificates-

3 Views

Open in Slack

Previous Next