mrajashree

Pods: Unique IP address accessible within cluster. One or more containers, ususally one. Smallest concept Deployment: If pod goes down, we need something to monitor it and notify api-server to bring up another one.

mrajashree

RANCHER_URL="myrancherhost:8080"
# External ID value, should be the value of the attribute you want to provide for User ID in Rancher, so if is sAMAccountName
EXTERNAL_ID="value of sAMAccountName for admin"

curl -H "Accept: application/json" -H "Content-Type: application/json" -d '{"name":"api.host", "value":"${RANCHER_URL}"}' http://${RANCHER_URL}/v2-beta/settings

# Define the admin user
curl -H "Content-Type: application/json" -X PUT -d '{"externalId":"${EXTERNAL_ID}", "externalIdType":"shibboleth_user"}' http://${RANCHER_URL}/v2-beta/accounts/1a1

# Get API keys for Admin user

mrajashree

Load balancer

• Layer 3 Load balancing takes routing decisions based on IP addresses alone
• Layer 4 is TCP, does routing decisions only based on network packets' address, not on contents. IP address plus TCP ports etc
• Layer 7 HTTP, can do routing based on contents of the packets, URL/cookie. Example, if user's requests contain requests frequently for certina media, Layer 7 lbs can direct the user requests to those servers that can bettwe serve these reqyests

mrajashree

UI has instructions for the steps up to register your rancher server domain and creating the OAuth credentials. These are the steps for generating the service account credential file:

1. Be logged in to your gsuite domain as the admin
2. Navigate to Service accounts page: https://console.developers.google.com/iam-admin/serviceaccounts
3. Create a service account.
   Create Service account - page 1

Create Service account - page 2- no need to specify roles