1 of 1

Rancher Server Setup

Work in progress

Introduction

Rancher is used to managing multiple clusters. Being a critical component of cluster administration it is highly recommended that Rancher itself runs on a Kubernetes cluster with sufficient replication for high availability and avoiding a single point of failure.

Kubernetes cluster setup

Set up a new RKE2 cluster. Refer to the K8s Cluster Setup guide.
- Do not remove the stock ingress controller in the server config.
- No need to install Istio.

It is recommended to set up a double-node cluster for high availability. However, for the non-production environments, you may create a single node cluster to conserve resources

Rancher installation

To install Rancher use this (hostname to be edited in the below command):

helm repo add rancher-latest https://releases.rancher.com/server-charts/latest
helm repo update
helm install rancher rancher-latest/rancher \
  --namespace cattle-system \
  --create-namespace \
  --set hostname=rancher.openg2p.org \
  --set ingress.tls.source=tls-rancher-ingress

Configure/Create TLS secret accordingly.

kubectl create secret tls tls-rancher-ingress -n cattle-system \
    --cert=path/to/cert/file \
    --key=path/to/key/file

Longhorn Setup

Install Longhorn as a Rancher App.

Keycloak setup

From infra folder, run the following to install Keycloak (hostname to be edited in the below command).

helm repo add bitnami https://charts.bitnami.com/bitnami
helm repo update
helm install keycloak bitnami/keycloak \
  -n keycloak \
  --create-namespace \
  --version "7.1.18" \
  --set ingress.hostname=keycloak.openg2p.org \
  --set ingress.extraTls[0].hosts[0]=keycloak.openg2p.org \
  -f rancher-keycloak-values.yaml

Integrate Rancher and Keycloak

Integrate Rancher and Keycloak using Rancher Auth - Keycloak (SAML) guide.