Add the cert-manager helm repository:

Create a namespace for cert-manager:

  1. kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/v0.15.2/cert-manager.crds.yaml

And install it with Helm. Note that cert-manager also needs your proxy configured in case it needs to communicate with Let’s Encrypt or other external certificate issuers:

Now you should wait until cert-manager is finished starting up:

  1. kubectl rollout status deployment -n cert-manager cert-manager-webhook

Next you can install Rancher itself. First add the helm repository:

And install Rancher with Helm. Rancher also needs a proxy configuration so that it can communicate with external application catalogs or retrieve Kubernetes version update metadata:

  1. helm upgrade --install rancher rancher-latest/rancher \
  2.    --namespace cattle-system \
  4.    --set noProxy=127.0.0.0/8\\,10.0.0.0/8\\,cattle-system.svc\\,172.16.0.0/12\\,192.168.0.0/16\\,.svc\\,.cluster.local

After waiting for the deployment to finish:

  1. kubectl rollout status deployment -n cattle-system rancher

You can now navigate to https://rancher.example.com and start using Rancher.

These resources could be helpful when installing Rancher: