d3c5c8d3fa
Forward port #342 and #344 to 2.7 docs
2023-04-21 16:14:58 -07:00
70eaaa1f3b
Change wording on scale-to-zero
...
Change wording to make it clear it's the workloads that are currently scaled to zero that won't be caught by the command.
2023-04-19 13:39:21 -04:00
7b440a3f68
Update docs/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/pod-security-standards.md
2023-04-19 13:16:53 -04:00
ac6503f23e
Change wording from "might" to "may"
...
Change wording on the admonition from "might" to "may".
2023-04-19 11:52:24 -04:00
5f5934aee4
Add admonition for caveat on finding PSPs in use
...
Add a caution admonition for a caveat on using the kubectl get psp strategy to find which PSPs are still in use in the cluster.
2023-04-19 11:49:54 -04:00
e48aabb3dd
Merge pull request #496 from esen-transporeon/patch-1
...
Hint for authorized cluster endpoints with rke2 and k3s
2023-04-18 15:10:00 -07:00
5ab65eafc1
Apply hint from 0475d47e and d7f9ab67 to 2.7
2023-04-18 14:44:15 -07:00
2862f3d506
#534 fixing broken link to fleet.rancher.io/gitrepo-structure ( #535 )
2023-04-13 11:58:22 -04:00
c17c68516a
532 link to PSA exemptions from custom/imported hardened cluster upgrade guide ( #533 )
2023-04-13 10:29:24 -04:00
e22569549c
[release/v2.7.2] Document Helm charts upgrade and helm-mapkubeapis ( #508 )
...
* [release/v2.7.2] Add documentation on charts + helm-mapkubeapis.
* Add documentation on how to upgrade Rancher-maintained Helm charts.
* Add documentation on how to use helm-mapkubeapis.
* Add documentation on recommended upgrade path.
* Apply suggestions from code review
Co-authored-by: Marty Hernandez Avedon <martyav@users.noreply.github.com >
* Apply suggestions from code review
Co-authored-by: Marty Hernandez Avedon <martyav@users.noreply.github.com >
---------
Co-authored-by: Marty Hernandez Avedon <martyav@users.noreply.github.com >
2023-04-10 20:42:09 -04:00
ee9379eace
Merge branch 'main' into release/v2.7.2
2023-04-10 16:17:10 -04:00
e6f35c11cc
Rename Fleet to CD w/ Fleet
2023-04-04 10:03:22 -07:00
30cab88ff9
Fix broken link ( #521 )
2023-04-04 11:18:31 -04:00
a5e3b54e32
#77 Addressing backlog issue about registered AKS clusters ( #518 )
...
* #77 addressing backlog issue about registered AKS clusters
* moved the acronym expansions forward and made some style edits
* applied suggestions from code review
2023-04-03 14:47:47 -04:00
fba622e38c
#428 clarify that global default registry doesn't work when using namespaced registry on downstream RKE2 ( #444 )
...
* #428 clarify that global default registry doesn't work when using namespaced registry on downstream RKE2
* build choked on angle brackets
* added instructions for rke2 w certain namespaced private registries
* Apply suggestions from code review
Co-authored-by: Billy Tat <btat@suse.com >
---------
Co-authored-by: Billy Tat <btat@suse.com >
2023-04-03 11:03:15 -04:00
40bfe603fa
Fix typo
2023-03-29 19:14:42 +08:00
4a80c72620
Merge pull request #507 from maxsokolovsky/update-azuread-permission-recommendations
...
Add to the note about Azure AD permission recommendations
2023-03-24 16:40:33 -04:00
06e5b9d1a0
Add to the note about Azure AD permission recommendations
2023-03-24 15:17:07 -04:00
40936468b4
[2.7.2] #462 Add instructions for how to use PSACT ( #489 )
...
* #462 Add Add instructions for how to use PSACT
* started adding instructions for adding/editing a cluster
* started adding instructions for add/editing a psa template
* instructions for rke2/k3s, note about cis
* updated to include RKE1 instructions
* wording
* nipicky word choice: applied > described
* Apply suggestions from code review
Co-authored-by: Jiaqi Luo <6218999+jiaqiluo@users.noreply.github.com >
* tabs, added suggestion on RKe2 link from thread
* sidebars, correcting language in hardening guide
* link, switching where list of exempt namespaces is placed, corrections - users edit the PSA config, not PSS, to establish restrictions on pods
* update link
* added final save/create instructions
* Apply suggestions from code review
Co-authored-by: Billy Tat <btat@suse.com >
* updated file names
* missing metadata key
* corrected links
* Delete psa-config-template.md
File shouldn't still be in the tree, as it was renamed
* Apply suggestions from code review
Co-authored-by: Jiaqi Luo <6218999+jiaqiluo@users.noreply.github.com >
* syncing RKE1 and 2 hardening guides, title update
* moved sample config file, added - to list of required exempt namespaces
* added moved config file to sidebars.js
---------
Co-authored-by: Jiaqi Luo <6218999+jiaqiluo@users.noreply.github.com >
Co-authored-by: Billy Tat <btat@suse.com >
2023-03-24 15:04:15 -04:00
7c8199790e
Adding fleet-default to list of exceptions for restricted clusters
2023-03-23 10:29:43 -04:00
d5b67bb7ec
[2.7.2] Update PSS docs ( #479 )
...
* Update PSS docs
Signed-off-by: Guilherme Macedo <guilherme.macedo@suse.com >
* Update namespace exemption list
Signed-off-by: Guilherme Macedo <guilherme.macedo@suse.com >
* Apply suggestions from code review
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
* typo fix for docs/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/create-pod-security-policies.md
* Removing rancher-operator-system
* Removing rancher-operator-system
* Update docs/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/pod-security-standards.md
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
* Update docs/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/pod-security-standards.md
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
---------
Signed-off-by: Guilherme Macedo <guilherme.macedo@suse.com >
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
Co-authored-by: Caleb Bron <cbron@users.noreply.github.com >
2023-03-13 14:38:04 -07:00
17a240fb7b
Merge remote-tracking branch 'upstream/main' into main-to-release/v2.7.2
2023-03-08 10:44:35 -08:00
be5abfdb33
Moving manage-cluster-templates.md into Manage Clusters subsection for more intuitive grouping.
...
Signed-off-by: Sunil Singh <sunil.singh@suse.com >
2023-03-03 13:51:01 -08:00
21f1cf2373
Merge pull request #457 from jiaqiluo/add-psp-limitaion
2023-03-02 12:22:09 -07:00
a4c15b0000
Add instructions for setting up a restricted-by-default local cluster for Rancher
...
and for pod security standards in general
2023-03-02 07:54:00 -05:00
a49ed4a35c
add a note that Rancher does not clean up the builtin PSPs
2023-03-01 15:51:10 -07:00
64f9e1b790
Clarify that project-scoped secrets can't be set at the namespace level
2023-02-27 16:44:04 -07:00
7491be0bf5
Fix typo
2023-02-27 11:34:44 +08:00
81b576006f
Update step 5 for configuring Azure AD in Rancher ( #441 )
...
Add warning that the Azure AD account mapped to the Rancher local principle account will have admin privileges
* Update configure-azure-ad.md
* Update configure-azure-ad.md
* Update docs/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/authentication-config/configure-azure-ad.md
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
* Update docs/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/authentication-config/configure-azure-ad.md
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
* Update docs/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/authentication-config/configure-azure-ad.md
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
* Update versioned_docs/version-2.6/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/authentication-config/configure-azure-ad.md
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
* Update versioned_docs/version-2.6/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/authentication-config/configure-azure-ad.md
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
---------
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
2023-02-23 16:11:10 -08:00
c3c887268b
Update vsphere-storage.md
...
Updating this page in reference to https://github.com/rancher/rancher-docs/issues/274
2023-02-21 13:15:20 -08:00
b290851cda
Forward-port verbiage changes from v2.6
2023-02-21 20:01:48 +00:00
53fd0c4cf7
Update create-credentials.md
2023-02-17 15:17:21 -08:00
c9e8af40d0
Merge branch 'rancher:main' into unable-to-attach-mount-volumes-398
2023-02-17 15:09:42 -08:00
68cdb02b33
Update create-credentials.md
...
In reference to (https://github.com/rancher/rancher-docs/issues/398 and https://github.com/kubernetes-sigs/vsphere-csi-driver/issues/2143 ), users hit an issue while creating a new role (RabcgerRole) in the vSphere Web Client. The solution is to add the following privilege when creating the new role: Cns.searchable.
I added the (Privilege Group, Cns Privileges) and (Operations, Searchable) to the table referencing (https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-C04F1605-D158-4B65-810F-6F5B109BCDEC.html ).
Note: The screenshot showing the list of privileges when creating a new role in the vSphere Client does not show "Cns Privileges." This privilege was added in vSphere 7.0. Looks like the screenshot is from vSphere 6.0. Connect with someone who provide updated screenshots for "Creating Credentials in the vSphere Console."
2023-02-17 11:13:40 -08:00
e0623c631e
Update v2.7 Chinese translation
2023-02-16 12:55:22 +08:00
f57735ae71
Adds skeleton for PSS page
2023-02-13 15:39:27 -07:00
59a46b195a
Apply PR #353 and #389 changes to version 2.6 docs
2023-02-08 16:45:32 -08:00
e8869c3a9c
Merge pull request #389 from jpartain89/patch-1
...
Move the http -> server block
2023-02-06 16:40:01 -08:00
16cbb8302c
Merge pull request #405 from LucasSaintarbor/gke-cluster-creation-pages
...
#386 Update GKE cluster creation pages
2023-02-06 16:16:33 -08:00
e7868de06b
Update docs/how-to-guides/new-user-guides/kubernetes-clusters-in-rancher-setup/set-up-clusters-from-hosted-kubernetes-providers/gke.md
...
Co-authored-by: Billy Tat <btat@suse.com >
2023-02-06 15:43:29 -08:00
5e2bbb4eff
Update gke.md
2023-02-06 14:46:11 -08:00
b01a2b14ca
Update gke.md
2023-02-06 14:44:19 -08:00
33e43652a5
Merge pull request #383 from martyav/378-k8s-post-1.20-hostNetwork-true-needs-to-be-set-for-tcp-and-udp-to-work
...
Kubernetes >= v1.21, hostNetwork needs to be set to true on Ingress for TCP and UDP Services to work
2023-02-06 13:18:29 -08:00
8a019a77f8
Merge pull request #401 from bashofmann/update-aws-cloud-provider
...
Add note about CSIMigrationAWS feature gate to make in-tree AWS cloud provider work for Kubernetes >= 1.23
2023-02-06 13:17:50 -08:00
1defac0ec5
Add note about CSIMigrationAWS feature gate to make in-tree AWS cloud provider work for Kubernetes >= 1.23
...
Fixes https://github.com/rancher/rancher-docs/issues/400
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de >
2023-02-06 15:56:10 +01:00
caeabf724e
Apply copy edits
2023-02-02 12:37:13 -05:00
e7677c93b9
remove amazon-eks-permmissions.md and minimum-eks-permissions.md as their files are renamed
2023-02-02 07:55:52 -08:00
40879c05f2
Merge branch 'main' into patch-move-eks
2023-02-02 07:52:40 -08:00
175bbd6ddb
move eks creation and permissions page from ref guides to setup clusters from hosted providers section
2023-02-02 07:49:01 -08:00
bad5a67e94
SURE-5160 Remove cloning cluster pages
2023-01-31 09:32:02 -08:00
Billy Tat
Mauren Berti
Marty Hernandez Avedon
Marty Hernandez Avedon
vickyhella
Max Sokolovsky
Chad Roberts
Guilherme Macedo
Sunil Singh
Jiaqi Luo
Caleb Bron
Lucas Saintarbor
Bastian Hofmann
Rey Lejano