添加host出现错误:
ERROR: https://10.5.0.224:8080/v1 is not accessible (server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none)
- 注意:需要在linux主机中运行一下脚本,运行脚本之前,需要建立rancher,privatekey,certs文件夹
#!/bin/bash
base_dir=$PWD
#create dir
sudo mkdir -f $PWD/rancher
#generate key
sudo openssl genrsa -out $PWD/rancher/privatekey/rancher.key 2048
sudo openssl req -new -key $PWD/rancher/privatekey/rancher.key \
-out $PWD/rancher/certs/rancher.csr
sudo openssl x509 -req -days 1825 -in $PWD/rancher/certs/rancher.csr \
-signkey $PWD/rancher/privatekey/rancher.key \
-out $PWD/rancher/certs/rancher.crt
#generate pem file
sudo cat $PWD/rancher/certs/rancher.crt $PWD/rancher/privatekey/rancher.key \
| sudo tee $PWD/rancher/certs/rancher.pem
2:生成了key之后,需要运行一下命令,运行rancher
docker run -d --restart=unless-stopped -p 8080:8080 -v /some/dir/rancher/certs/rancher.crt:/var/lib/rancher/etc/ssl/ca.crt rancher/server
注意:some/dir 换为脚本所在的真正的目录,也就是rancher.crt所在目录
3:(不知道这一步是不是起作用,还是上一步起作用了,反正我都配置了)运行了脚本之后,点击rancher ui中的infrastructure菜单下的certifcate按钮,分别在前两个里面输入了生成的值,如下图所示
4:之后就可以添加主机了