Rancher Server Setup

Work in progress


Rancher is used to managing multiple clusters. Being a critical component of cluster administration it is highly recommended that Rancher itself runs on a Kubernetes cluster with sufficient replication for high availability and avoiding a single point of failure.

Kubernetes cluster setup

  • Set up a new RKE2 cluster. Refer to the K8s Cluster Setup guide.

    • Do not remove the stock ingress controller in the server config.

    • No need to install Istio.

It is recommended to set up a double-node cluster for high availability. However, for the non-production environments, you may create a single node cluster to conserve resources

Rancher installation

  • To install Rancher use this (hostname to be edited in the below command):

    helm repo add rancher-latest https://releases.rancher.com/server-charts/latest
    helm repo update
    helm install rancher rancher-latest/rancher \
      --namespace cattle-system \
      --create-namespace \
      --set hostname=rancher.openg2p.org \
      --set ingress.tls.source=tls-rancher-ingress
    • Configure/Create TLS secret accordingly.

    kubectl create secret tls tls-rancher-ingress -n cattle-system \
        --cert=path/to/cert/file \

Longhorn Setup

Keycloak setup

  • From infra folder, run the following to install Keycloak (hostname to be edited in the below command).

  • helm repo add bitnami https://charts.bitnami.com/bitnami
    helm repo update
    helm install keycloak bitnami/keycloak \
      -n keycloak \
      --create-namespace \
      --version "7.1.18" \
      --set ingress.hostname=keycloak.openg2p.org \
      --set ingress.extraTls[0].hosts[0]=keycloak.openg2p.org \
      -f rancher-keycloak-values.yaml

Integrate Rancher and Keycloak

Integrate Rancher and Keycloak using Rancher Auth - Keycloak (SAML) guide.

Last updated