Documentation

Rancher

Suggest Edits

What is Rancher?

Rancher is an open-source platform that simplifies the deployment, management, and scaling of Kubernetes clusters. It provides a centralized interface for orchestrating containers across multiple environments, making Kubernetes more accessible and manageable.

How is this integration useful?

Integrating Rancher with Entitle automates and streamlines access control for Kubernetes clusters, ensuring that users and teams have the appropriate permissions when needed. This reduces security risks, minimizes manual access provisioning, and enhances governance across multi-cluster environments.

Through this integration, Entitle can manage the following resource types in Rancher:

  • Global permissions
  • Clusters
  • Projects

📘

Note

It is recommended to have a one-to-one authorization between your Entitle email address and your Rancher instance. Otherwise, Entitle will create a new temporary user whose credentials will be sent to the user requesting access via Slack/Teams. The created user will be deleted along with its granted permissions once the access request expires.

Prerequisites

  • You must have an Admin account in Entitle.
  • Rancher account with admin privileges.
  • Access to your Rancher Access key, Secret key, and URL (with API endpoint).

Extract your API Endpoint

  1. Log in to your Rancher server.
  2. Click the user icon > Account & API Keys from the dropdown menu.
  3. In the API Keys section, copy the API Endpoint and save it for later.

Create a new API (access) and Secret keys

  1. On the Account & API Keys screen, click Create API Key.

  2. In the Create API key screen:

    1. Optionally, add a description for your new API key.

    2. Leave the Scope section as-is.

    3. Set an expiration duration under the Automatically expire section. Click Create.

      The new key set displays.

  3. Copy your Access key and Secret key for the configuration later on. Click Done.

Create the Rancher integration in Entitle

💡

Important

This applies to creating an integration either through Entitle on Pathfinder or through the Entitle standalone product.

  1. Sign in to Entitle.

  2. Navigate to the Integrations page.

  3. Click Add Integration.

  4. In the Application field, enter Rancher.

  5. In the Save on dropdown, select Entitle cloud or your hosted agent.

  6. In the Connection field:

    1. access_token: Insert the Access key you saved from the Account & API Keys screen.
    2. secret_key: Insert the Secret key you saved from the Account & API Keys screen.
    3. url: Insert your Rancher instance URL and the API endpoint you extracted in the API keys section.
    4. verify: Set to true if your server has an official SSL certificate and not a self-signed one. Otherwise, leave it as false.
      Example Connection JSON:
    {
	"access_token": "<YOUR_ACCESS_TOKEN>",
	"secret_key": "<YOUR_SECRET_KEY>",
	"url": "<YOUR_URL>"
	"verify": false
}

    1. Click Save.

      The Entitle integration with Rancher saves

Updated 2 days ago