Introduction – RKE2
12 days ago
- #Rancher
- #Security
- #Kubernetes
- RKE2 is Rancher's enterprise-ready, next-generation Kubernetes distribution, also known as RKE Government.
- It focuses on security and compliance, especially for the U.S. Federal Government sector.
- RKE2 provides defaults and configurations to pass CIS Kubernetes Benchmark v1.7 or v1.8 with minimal intervention.
- It enables FIPS 140-2 compliance and regularly scans components for CVEs using trivy.
- RKE2 combines features from RKE1 (close alignment with upstream Kubernetes) and K3s (usability and ease-of-operations).
- Unlike RKE1, RKE2 does not rely on Docker; it uses containerd as the embedded container runtime.
- RKE2 can run standalone or integrated into Rancher, with automated provisioning available in Rancher v2.6+.
- It was also named RKE Government to target sectors with heightened security requirements.
- SUSE supports responsible disclosure for security issues; vulnerabilities can be reported to [email protected].