What is Rancher?<\/h2>\n
Lest say you are working in a project that runs applications on Kubernetes. <\/p>\n
At first, you might have just one Kubernetes cluster. But as the project grows, you may have clusters in different environments for development, testing, and production<\/p>\n
Also, you might have clusters spread across different cloud providers (AWS, Azure, Google Cloud) for multi-cloud strategy. Some clusters might be running in your own data centers.<\/p>\n
Now, how do you manage all these clusters? How do you plan the upgrades? How do you enforce security policies for all the clusters?<\/p>\n
Well, here is where Rancher comes in to play.<\/p>\n
Rancher<\/a> is a free management platform that acts as a “control center” for all your Kubernetes clusters. You can manage all your clusters from a single interface, whether they are in AWS, Azure, on-premises, or at the edge.<\/p>\n When we say Rancher helps “manage” clusters, here is what you can actually do with it.<\/p>\n Now that you have a high level idea of what Rancher is, lets get our hands dirty with a practical setup. So that it will all make sense for you.<\/p>\n If you want to know more about the hardware requirements, please refer to this official documentation<\/a>.<\/p>\n Once you ensure all the prerequisites are available, we can pull the Helm chart to begin the installation.<\/p>\n Note:<\/strong> At the time of writing this blog, Rancher is not supported for Kubernetes v1.34.<\/p><\/blockquote>\n Ingress controller and Cert Manager are two important components that are needed for the Rancher setup.<\/p>\n The Rancher needs the Nginx Ingress Controller to route incoming traffic.<\/p>\n To set up the Nginx Ingress Controller on your Kubernetes cluster, follow the guide “Setup Nginx Ingress Controller On Kubernetes<\/a>“<\/p>\n But in real production, you should use the LoadBalancer<\/strong><\/b> service type so the Ingress Controller creates a real Load Balancer to route the traffic.<\/div>\n<\/div>\n Rancher also needs Cert Manager<\/strong> to create TLS certificates for secure communication between the clusters you add.<\/p>\n To set up a cert manager on a Kubernetes cluster, follow the guide “Set up Cert Manager in a Kubernetes cluster<\/a>“<\/p>\n But in production, you should use Cert Manager with a trusted Certificate Authority<\/strong><\/b> to generate valid certificates.<\/div>\n<\/div>\n The setup begins with the requirements to install Rancher.<\/p>\n First, we need to add the entire Rancher Helm repo on our local machine and update the repo to ensure we have the latest chart.<\/p>\n You can now directly install Rancher, though you can pull this chart on your local machine if you want.<\/p>\n To pull the chart, use the following command.<\/p>\n The following is the directory structure of the Helm chart.<\/p>\n Here, you can see the values file ( The following are the container images used on this chart.<\/p>\n We are going to do a custom installation so that anyone can try on any type of Kubernetes cluster.<\/p>\n The customization we used to give a hostname to access the Rancher and give a custom password to access the Rancher dashboard.<\/p>\n To do this, create a file called In the above configuration, we have added <\/p>\n The Using “rancher” as TLS source means that we are telling Rancher to use self-signed certificates.<\/p><\/div>\n<\/div>\n Now, we are ready for the installation with the custom values file. <\/p>\n Use the following command to install Rancher on a Kubernetes cluster.<\/p>\n Once the installation is completed, you can see the instructions on the terminal on how to log in to Rancher.<\/p>\n Note: The Rancher pods will take 5 to 10 minutes to completly up and running<\/p><\/blockquote>\n Before we login, we can check the status of the Rancher Pods.<\/p>\n By default, Rancher will deploy with three replications for high availability.<\/p>\n This confirms that all the Rancher pods are running without any issues. <\/p>\n Open any web browser and paste the URL Since we use the HTTPS URL, it is showing as “Not secure” because we have used an untrusted SSL certificate created by Rancher.<\/p>\n On the next page, you will need to confirm the Rancher server URL.<\/p>\n Since we are not using DNS, we can give the Node’s IP address as the server URL.<\/p>\n After clicking the “Continue” button, we can see the dashboard.<\/p>\n By default, we can see that a cluster is added to Rancher. This is a cluster where we install the Rancher. <\/p>\n Now, we are ready to add clusters to Rancher to manage them.<\/p>\n For this demo, I am using a Kind cluster, but you can use any Kubernetes cluster, even managed clusters like EKS, AKS, and GKE<\/a> as well.<\/p>\n Assuming you already have a cluster, and if you want to set up a Kind cluster, you can refer to this blog –> Kubernetes Kind Cluster Tutorial<\/strong><\/a>.<\/strong><\/p>\n From the dashboard, click the “Import Existing” button to add a cluster.<\/p>\n If the cluster is not a managed cluster, such as EKS, AKS, or GKE, choose the “Generic”<\/p>\n A “Cluster Management<\/a>” page will open. Here, you need to provide a name for the cluster that you are going to add.<\/p>\n This page has some other settings that we can configure, such as.<\/p>\n Basic – <\/strong>Cluster version management settings<\/p>\n Members Roles – <\/strong>Controls who can access the cluster with the defined level of permission (By default, the Admin user will be added)<\/p>\n Labels & Annotations – <\/strong>Adding labels to clusters to identify and organize them (e.g., Registries – <\/strong>Configure the registries to pull images on a private environment (JFrog, Harbor, or Private Docker Hub)<\/p>\n Advanced – <\/strong>Settings for the Rancher Agent (Configure as variables). <\/p>\n On the next page, we will get instructions to deploy the Rancher agent on the cluster that we want to add to the Rancher.<\/p>\n Here, we have chosen the second command to install the Rancher agent on the Kind cluster because we have not used a valid SSL for the Rancher.<\/p>\n To ensure that the Rancher agent is deployed in the cluster, use the following command.<\/p>\n You will get the following output.<\/p>\n Once the agent starts running, we can see the same UI page turn with the information of the added cluster.<\/p>\n Here, you can see all the nodes of the Kind cluster. If you want to see the detailed information of a particular node, click on the node name.<\/p>\n In the next section, we perform a simple operation of deploying a Pod via Rancher.<\/p>\n For testing, we are deploying an Nginx pod on a Kind cluster from the Rancher dashboard.<\/p>\n Navigate to Workloads –> Pods –> Click the “Create” button.<\/p>\n On the next page, you need to fill a form of Pod details such as pod name, container name, image name, etc then click “Create” button.<\/p>\n You can see the status of the Pod creation as well as the information.<\/p>\n Once the creation is successfully completed, you can see the following output.<\/p>\n If you click the three dots, you will see options like opening the pod shell, viewing logs, editing the configuration, cloning, downloading the pod’s YAML file, or deleting the pod.<\/p>\n Rancher is not only a dashboard to view all your cluster, deploy pods or troubleshoot.<\/p>\n Rancher is already using by many organizations. Here are the few examples.<\/p>\n If you want to clean the reancher setup, you can run the following YAML.<\/p>\n This will run a Kubernetes Job to clean all the Rancher-related resources. To watch the cleanup, use the following command.<\/p>\n This will take a bit of time to complete the cleanup. Once it is completed, use the following command to verify <\/p>\n Once verified, we need to remove the job as well.<\/p>\n This blog covered the setup of Rancher on a Kubernetes cluster and a demo of how to add a cluster and perform operations on it from the Rancher dashboard.<\/p>\n There is more you can do with the Rancher like authentication, upgradation or even create Rancher Kubernetes clusters.<\/p>\n Explore them, and we will also cover those topics in the upcoming blogs.<\/p>\n\n
Prerequisites<\/h2>\n
\n
Set up Nginx Controller (Prerequisite)<\/h2>\n
Setup Cert Manager (Prerequisite)<\/h2>\n
Set Up Rancher using Helm<\/h2>\n
Step 1: Add the Rancher Repo<\/h3>\n
helm repo add rancher-stable https:\/\/releases.rancher.com\/server-charts\/stable\n\nhelm repo update<\/code><\/pre>\nhelm pull rancher-stable\/rancher --untar<\/code><\/pre>\n![\"the](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-19.png\")
<\/figure>\nvalues.yaml<\/code>) that has all the modifiable parameters.<\/p>\n\n
docker.io\/rancher\/rancher<\/code><\/li>\nrancher\/shell:v0.5.0<\/code><\/li>\nrancher\/mirrored-bci-micro:15.6.24.2<\/code><\/li>\n<\/ul>\nStep 2: Create Custom Values File<\/h3>\n
custom-values.yaml<\/code> with the following settings.<\/p>\nhostname: 4.246.120.68.sslip.io\n\ningress:\n ingressClassName: \"nginx\"\n\n tls:\n source: rancher\n \nbootstrapPassword: \"devops123\"<\/code><\/pre>\n\n
*.sslip.io<\/code> is the wildcard DNS name and is required because, in Ingress, to attach TLS certificates, a domain name is required. This is only required for the testing environment.<\/p>\nrancher.techiescamp.com<\/code> if we already have a domain name and DNS service like Route53.<\/strong><\/b><\/p>\nStep 3: Install Rancher<\/h3>\n
helm install rancher rancher-stable\/rancher \\\n --namespace cattle-system \\\n --create-namespace \\\n -f custom-values.yaml<\/code><\/pre>\nkubectl -n cattle-system get po<\/code><\/pre>\n![\"the](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-197.png\")
<\/figure>\nStep 6: Access Rancher UI<\/h3>\n
https:\/\/4.246.120.68.sslip.io:32001<\/code>, You will see a login page where you need to enter the password.<\/p>\n32001<\/code> is the nodeport number of the Nginx Ingress controller service. If you are using Load Balancer, the Node Port number is not required.<\/div>\n<\/div>\n![\"accessing](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-198.png\")
<\/figure>\n![\"the](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-199.png\")
<\/figure>\n![\"the](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-26.png\")
<\/figure>\nAdding Kubernetes Clusters to Rancher<\/h2>\n
![\"importig](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-109.png\")
<\/figure>\n![\"adding](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-110.png\")
<\/figure>\nenvironment: production<\/code>)<\/p>\n![\"filling](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-111.png\")
<\/figure>\n![\"the](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-200.png\")
<\/figure>\nkubectl -n cattle-system get po<\/code><\/pre>\nNAME READY STATUS RESTARTS AGE\n\ncattle-cluster-agent-c4655cd8d-4zr9s 1\/1 Running 0 48m\ncattle-cluster-agent-c4655cd8d-ptp5q 1\/1 Running 0 49m\nhelm-operation-fr6fl 0\/2 Completed 0 46m\nhelm-operation-vgnhz 0\/2 Completed 0 46m\nrancher-webhook-6ddf589c5d-l4qsm 1\/1 Running 0 46m<\/code><\/pre>\n![\"the](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-201.png\")
<\/figure>\n![\"the](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-202.png\")
<\/figure>\nTesting a Deployment from Rancher<\/h2>\n
![\"selecting](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-223.png\")
<\/figure>\n![\"filling](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-224.png\")
<\/figure>\n![\"the](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-225.png\")
<\/figure>\n![\"after](\"https:\/\/storage.ghost.io\/c\/5f\/2f\/5f2f4d20-2abf-4534-8d40-7aa233aedd43\/content\/images\/2025\/10\/image-226.png\")
<\/figure>\nRancher Operations<\/h2>\n
\n
Rancher Case Studies<\/h2>\n
\n
Clean up the Rancher Setup<\/h2>\n
kubectl create -f https:\/\/raw.githubusercontent.com\/rancher\/rancher-cleanup\/main\/deploy\/rancher-cleanup.yaml\n<\/code><\/pre>\nkubectl -n kube-system logs -l job-name=cleanup-job -f\n<\/code><\/pre>\n# Check namespaces\nkubectl get namespaces | grep cattle\nkubectl get namespaces | grep fleet\n\n# Check CRDs\nkubectl get crd | grep cattle.io<\/code><\/pre>\nkubectl delete -f https:\/\/raw.githubusercontent.com\/rancher\/rancher-cleanup\/main\/deploy\/rancher-cleanup.yaml\n<\/code><\/pre>\nConclusion<\/h2>\n
\n