Rancher Server Setup

Introduction

Rancher is used to manage multiple clusters. Being a critical component of cluster administration it is highly recommended that Rancher itself runs on a Kubernetes cluster with sufficient replication for high availability and avoiding a single point of failure.

Kubernetes cluster setup

Set up a new RKE2 cluster. Refer to the K8s Cluster Setup guide.
- Do not remove the stock ingress controller in the server config.
- No need to install Istio.

It is recommended to set up a double-node cluster for high availability. However, for the non-production environments, you may create a single node cluster to conserve resources

Rancher installation

To install Rancher use this (hostname to be edited in the below command):

helm repo add rancher-latest https://releases.rancher.com/server-charts/latest
helm repo update
helm install rancher rancher-latest/rancher \
  --namespace cattle-system \
  --create-namespace \
  --set hostname=rancher.openg2p.org \
  --set ingress.tls.source=tls-rancher-ingress

Configure/Create TLS secret accordingly.

kubectl create secret tls tls-rancher-ingress -n cattle-system \
    --cert=path/to/cert/file \
    --key=path/to/key/file

Longhorn Setup

Install Longhorn as a Rancher App.

Keycloak setup

From kubernetes/rancher folder, run the following to install Keycloak (hostname to be edited in the below command).

helm repo add bitnami https://charts.bitnami.com/bitnami
helm repo update
helm install keycloak bitnami/keycloak \
  -n keycloak \
  --create-namespace \
  --version "7.1.18" \
  --set ingress.hostname=keycloak.openg2p.org \
  --set ingress.extraTls[0].hosts[0]=keycloak.openg2p.org \
  -f keycloak-values.yaml

Integrate Rancher and Keycloak

Integrate Rancher and Keycloak using Rancher Auth - Keycloak (SAML) guide.

PreviousK8s Cluster Setup NextNFS Server Setup

Last updated 1 year ago

Kubernetes cluster setup

Set up a new RKE2 cluster. Refer to the K8s Cluster Setup guide.

Do not remove the stock ingress controller in the server config.
No need to install Istio.

It is recommended to set up a double-node cluster for high availability. However, for the non-production environments, you may create a single node cluster to conserve resources

Rancher installation

To install Rancher use this (hostname to be edited in the below command):

helm repo add rancher-latest https://releases.rancher.com/server-charts/latest
helm repo update
helm install rancher rancher-latest/rancher \
  --namespace cattle-system \
  --create-namespace \
  --set hostname=rancher.openg2p.org \
  --set ingress.tls.source=tls-rancher-ingress

Configure/Create TLS secret accordingly.

kubectl create secret tls tls-rancher-ingress -n cattle-system \
    --cert=path/to/cert/file \
    --key=path/to/key/file

Keycloak setup

From kubernetes/rancher folder, run the following to install Keycloak (hostname to be edited in the below command).

helm repo add bitnami https://charts.bitnami.com/bitnami
helm repo update
helm install keycloak bitnami/keycloak \
  -n keycloak \
  --create-namespace \
  --version "7.1.18" \
  --set ingress.hostname=keycloak.openg2p.org \
  --set ingress.extraTls[0].hosts[0]=keycloak.openg2p.org \
  -f keycloak-values.yaml