Pods: Unique IP address accessible within cluster. One or more containers, ususally one. Smallest concept Deployment: If pod goes down, we need something to monitor it and notify api-server to bring up another one.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
RANCHER_URL="myrancherhost:8080" | |
# External ID value, should be the value of the attribute you want to provide for User ID in Rancher, so if is sAMAccountName | |
EXTERNAL_ID="value of sAMAccountName for admin" | |
curl -H "Accept: application/json" -H "Content-Type: application/json" -d '{"name":"api.host", "value":"${RANCHER_URL}"}' http://${RANCHER_URL}/v2-beta/settings | |
# Define the admin user | |
curl -H "Content-Type: application/json" -X PUT -d '{"externalId":"${EXTERNAL_ID}", "externalIdType":"shibboleth_user"}' http://${RANCHER_URL}/v2-beta/accounts/1a1 | |
# Get API keys for Admin user |
Load balancer
- Layer 3 Load balancing takes routing decisions based on IP addresses alone
- Layer 4 is TCP, does routing decisions only based on network packets' address, not on contents. IP address plus TCP ports etc
- Layer 7 HTTP, can do routing based on contents of the packets, URL/cookie. Example, if user's requests contain requests frequently for certina media, Layer 7 lbs can direct the user requests to those servers that can bettwe serve these reqyests
UI has instructions for the steps up to register your rancher server domain and creating the OAuth credentials. These are the steps for generating the service account credential file:
- Be logged in to your gsuite domain as the admin
- Navigate to Service accounts page: https://console.developers.google.com/iam-admin/serviceaccounts
- Create a service account.
Create Service account - page 1
Create Service account - page 2- no need to specify roles
OlderNewer