Rancher

Rancher is used to manage multiple clusters. Being a critical component of cluster administration it is highly recommended that Rancher itself runs on a Kubernetes cluster with sufficient replication for high availability and avoiding a single point of failure.

To deploy Rancher carry out the following steps:

1. Make sure NFS server is already installed.

2. Install Kubernetes (K8s) cluster

3. Install Rancher

4. Install Keycloak

5. Integrate Keycloak with Rancher

K8s cluster installation

Follow steps 1-5 in the guide given here.

Rancher installation

• To install Rancher use this (hostname to be edited in the below command):

  Copy

  helm repo add rancher-latest https://releases.rancher.com/server-charts/latest
  helm repo update
  helm install rancher rancher-latest/rancher \
    --namespace cattle-system \
    --create-namespace \
    --set hostname=rancher.openg2p.org \
    --set ingress.tls.source=tls-rancher-ingress

  • Configure/Create TLS secret accordingly.

  Copy

  kubectl create secret tls tls-rancher-ingress -n cattle-system \
      --cert=path/to/cert/file \
      --key=path/to/key/file

Keycloak installation

• From kubernetes/rancher folder, run the following to install Keycloak (hostname to be edited in the below command)

• Copy

  helm repo add bitnami https://charts.bitnami.com/bitnami
  helm repo update
  helm install keycloak bitnami/keycloak \
    -n keycloak \
    --create-namespace \
    --version "7.1.18" \
    --set ingress.hostname=keycloak.openg2p.org \
    --set ingress.extraTls[0].hosts[0]=keycloak.openg2p.org \
    -f keycloak-values.yaml

Keycloak-Rancher integration

Integrate Rancher and Keycloak using Rancher Auth - Keycloak (SAML) guide.