From 557d26eb9ce35906b185b58afcaa61ee72227861 Mon Sep 17 00:00:00 2001
From: Steven Crespo <steven.crespo@rancher.com>
Date: Fri, 14 May 2021 12:24:03 -0700
Subject: [PATCH 1/2] Fix vsphere cpi

- Add toggle to enable/disable rbac through chart values
- Add question to apply node selector label based on cluster type
- Update cloud controller manager labels/names to avoid conflict
---
 .../rancher-vsphere-cpi/charts/questions.yaml | 11 ++++++++
 .../charts/templates/vsphere-cpi-ds.yaml      | 28 +++++++++++--------
 .../charts/templates/vsphere-cpi-rbac.yaml    | 18 ++++++------
 .../rancher-vsphere-cpi/charts/values.yaml    |  5 ++++
 4 files changed, 42 insertions(+), 20 deletions(-)

diff --git a/packages/rancher-vsphere-cpi/charts/questions.yaml b/packages/rancher-vsphere-cpi/charts/questions.yaml
index 99ff81f35..dbef2a71d 100644
--- a/packages/rancher-vsphere-cpi/charts/questions.yaml
+++ b/packages/rancher-vsphere-cpi/charts/questions.yaml
@@ -1,4 +1,15 @@
 questions:
+  - variable: clusterType
+    label: Cluster Type
+    description: Select the type of the cluster where vSphere CPI will be deployed
+    type: enum
+    default: "rke"
+    options:
+      - "rke"
+      - "rke2"
+      - "other"
+    group: Configuration
+
   - variable: vCenter.host
     label: vCenter Host
     description: IP address or FQDN of the vCenter
diff --git a/packages/rancher-vsphere-cpi/charts/templates/vsphere-cpi-ds.yaml b/packages/rancher-vsphere-cpi/charts/templates/vsphere-cpi-ds.yaml
index 54f9af541..2e4ee8e41 100644
--- a/packages/rancher-vsphere-cpi/charts/templates/vsphere-cpi-ds.yaml
+++ b/packages/rancher-vsphere-cpi/charts/templates/vsphere-cpi-ds.yaml
@@ -5,29 +5,33 @@ metadata:
   annotations:
     scheduler.alpha.kubernetes.io/critical-pod: ""
   labels:
-    component: cloud-controller-manager
+    component: {{ .Chart.Name }}-cloud-controller-manager
     tier: control-plane
-    k8s-app: vsphere-cloud-controller-manager
-  name: vsphere-cloud-controller-manager
+    k8s-app: {{ .Chart.Name }}-cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 spec:
   selector:
     matchLabels:
-      k8s-app: vsphere-cloud-controller-manager
+      k8s-app: {{ .Chart.Name }}-cloud-controller-manager
   updateStrategy:
     type: RollingUpdate
   template:
     metadata:
       labels:
-        k8s-app: vsphere-cloud-controller-manager
+        k8s-app: {{ .Chart.Name }}-cloud-controller-manager
     spec:
-      nodeSelector:
       {{- if .Values.cloudControllerManager.nodeSelector }}
+      nodeSelector:
       {{- with .Values.cloudControllerManager.nodeSelector }}
         {{- toYaml . | nindent 8 }}
       {{- end }}
-      {{- else }}
+      {{- else if eq .Values.clusterType "rke" }}
+      nodeSelector:
         node-role.kubernetes.io/controlplane: "true"
+      {{- else if eq .Values.clusterType "rke2" }}
+      nodeSelector:
+        node-role.kubernetes.io/control-plane: "true"
       {{- end }}
       securityContext:
         runAsUser: 1001
@@ -36,9 +40,9 @@ spec:
         operator: Exists
       - effect: NoSchedule
         operator: Exists
-      serviceAccountName: cloud-controller-manager
+      serviceAccountName: {{ .Chart.Name }}-cloud-controller-manager
       containers:
-        - name: vsphere-cloud-controller-manager
+        - name: {{ .Chart.Name }}-cloud-controller-manager
           image: "{{ template "system_default_registry" . }}{{ .Values.cloudControllerManager.image.repository }}:{{ .Values.cloudControllerManager.image.tag }}"
           args:
             - --v=2
@@ -61,8 +65,8 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    component: cloud-controller-manager
-  name: vsphere-cloud-controller-manager
+    component: {{ .Chart.Name }}-cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 spec:
   type: NodePort
@@ -71,4 +75,4 @@ spec:
       protocol: TCP
       targetPort: 43001
   selector:
-    component: cloud-controller-manager
+    component: {{ .Chart.Name }}-cloud-controller-manager
diff --git a/packages/rancher-vsphere-cpi/charts/templates/vsphere-cpi-rbac.yaml b/packages/rancher-vsphere-cpi/charts/templates/vsphere-cpi-rbac.yaml
index 56b8fa64c..4330af276 100644
--- a/packages/rancher-vsphere-cpi/charts/templates/vsphere-cpi-rbac.yaml
+++ b/packages/rancher-vsphere-cpi/charts/templates/vsphere-cpi-rbac.yaml
@@ -1,14 +1,15 @@
+{{- if .Values.cloudControllerManager.rbac.enabled -}}
 # Source: https://github.com/kubernetes/cloud-provider-vsphere/blob/master/releases/v1.19/vsphere-cloud-controller-manager.yaml
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
 rules:
 - apiGroups:
   - ""
@@ -105,23 +106,24 @@ roleRef:
 subjects:
 - apiGroup: ""
   kind: ServiceAccount
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 - apiGroup: ""
   kind: User
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
 roleRef:
   apiGroup: rbac.authorization.k8s.io
   kind: ClusterRole
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
 subjects:
 - kind: ServiceAccount
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 - kind: User
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
+{{- end -}}
diff --git a/packages/rancher-vsphere-cpi/charts/values.yaml b/packages/rancher-vsphere-cpi/charts/values.yaml
index 4c297fd40..708112e82 100644
--- a/packages/rancher-vsphere-cpi/charts/values.yaml
+++ b/packages/rancher-vsphere-cpi/charts/values.yaml
@@ -14,6 +14,11 @@ cloudControllerManager:
     repository: rancher/mirrored-cloud-provider-vsphere-cpi-release-manager
     tag: v1.2.1
   nodeSelector: {}
+  rbac:
+    enabled: true
+
+# Set to "rke" or "rke2" to apply the node selector label appropriate for the cluster
+clusterType: "rke"
 
 global:
   cattle:

From d7c8735983564c8d5bece064bfd95f459eedd19a Mon Sep 17 00:00:00 2001
From: Steven Crespo <steven.crespo@rancher.com>
Date: Wed, 30 Jun 2021 11:59:21 -0700
Subject: [PATCH 2/2] Make charts

---
 .../rancher-vsphere-cpi-100.0.0.tgz           | Bin 3597 -> 3756 bytes
 .../100.0.0/questions.yaml                    |  11 +++++++
 .../100.0.0/templates/vsphere-cpi-ds.yaml     |  28 ++++++++++--------
 .../100.0.0/templates/vsphere-cpi-rbac.yaml   |  18 ++++++-----
 .../rancher-vsphere-cpi/100.0.0/values.yaml   |   5 ++++
 5 files changed, 42 insertions(+), 20 deletions(-)

diff --git a/assets/rancher-vsphere-cpi/rancher-vsphere-cpi-100.0.0.tgz b/assets/rancher-vsphere-cpi/rancher-vsphere-cpi-100.0.0.tgz
index 2541f5a61cc6d9c86a9a7a5aeeedc6ef96331b6b..2cd21b4b72925d41962633a142c88ddff21cfc91 100644
GIT binary patch
delta 3732
zcmV;F4r}p^9IPFXJb!C*+c=W>di)h#@?0gk38{x=XHI9kF5@^k*K8c0oy^qM)K(0U
zEeU4`U;t2#F7bcg!b>7)`t3NgRl<ja0)a+%qtP!kEeTI2DC3#RCnzyabK2gW5UG<n
znX)Gj(mI_^XS3h8|93i_`v2X|M)yg#-`RZGU4Oa0x$&ga-GAuxUp|4(!z_PwE0iYk
zN$1{c)rtETX@qm3iKc?9K?INzO_&%bDbbo?LPa}8sp*JfHUKXxjl(jkaz^GcCsQ22
z?AS^Z>>lnnjy9uIPEs7eX)(lD&6UP!<4~anz$h=iG`^L{kSGkxE`>NEIsF}_qJj@#
z){RJ>FMf8DPJhygGE}LgxppH0!b}ty97-{x8A{ma8s&(j2+wv8_n${JHG?Nw=W5Vy
zr{<if#IwbqLzF_T+DwdvYL~D{)NCA`;`~g=ObwzKC?83pv@B9xNQ|b0a!n{lY2V_M
zP&R;+FdY7O0G|rOAV=tt-wF4t;S5Jg6f#8%EucH5dVf+34V<=Ny5y))wNpcJoO_A`
zjA*uCR;Odx^`ixK)xJw>(*HBU3RDkg0It#hotK-Py8d79uCMg}W3<^W8XaeJ|3oM~
zfL1F4$c5Ac==awn0Lm4ng~T_Ej0e!_n)eyeB()QjpHV23P8&G@L@A@}{LfTkhFnv^
z)G?+KwSQSJD6>{c_F^+qwd~t5a+E~l0JJPHimayE6<kZf7|M5qld;2`PRSS@NQt>n
zR0}y@=*9MwN+~2}akH+o>jpzIbx<uVZ3v!qlU~v_npb3aj0{sP<N&^&M*wn2QnxH}
zGGxX^I#k!-7&T}CEqRJ95Yj&MTBeKSIh%u?pnru3%7X+(hRDoYDRN1PMi>cc$EB=L
z8fE1F|1i%D*9_z+8Z$8@%$sh_JQtijeT^ehFnxq$s<dH9t93z*H=Tct)0`1w96n8u
z<tSC6^Lwa*>(2jrukQc7?DxB?^Zyv_>(>}E98r$Ya#Hgtb7J#Jdbw#qe10C8fpi4P
z?|;rXIJpa+Sfjixrsa}yJ%ZN1t9I*70FWtM{AexlL7rWB{?QEm7i(9a|3$A=oT=a=
zI*!xnEnS0a?SDP~>-GBUz18`Dj8+SiPASg@uxmH^9m%69YGRE2U=ezhMZtIaNbc)b
zNRFHtO%6ggoS#PlfS0DkOdh~DYpMQxYk&2?Kb+aJzJU$qVB5m;%EEgo$pt?mv17l%
z=R#<^Rt=29Vfzx?YV(ZO)4Z;IQyU%pqIkr}xOrOHbt+GHl>bhpE(mjDo2DCwtTfH>
zsN{MzFIpZ@TJw_qzv21MX`J0TBDm)K_cu3c{(rBt+22^5|Ho)+aBMRLgFB@O+J8eP
zhV3aaZfVHHsP?RzbpP|B?eKnkaIvj4Rnjyh&&_17gkBSz3Vw{bqJ(PsDgc#EFe@0!
zgs^-<k|oYIdnKu+DPeIgLM&qaY(F^_(_C=m+G#JB_%!+f&d)DJ+{FeI<pBK4IA?^T
z?LYlR#U#&f3D2q4TTi)8@v0nce18&R3`g{o=ydY85*O}@b&+R8<FPhD+Ia3@X&amz
z3C1WNf3yQ4fS^%40;T;lja6{DD>eXuT+?dqYIE$Elw-P}*K3hp3Emmile<B5^R@Up
znKDS=8*s{vA%kC*V}cV~?J%A%9RYqWExd>VeRz2#;;uKAf?@q^IOMJD4u7C!BG=aK
zmhRnm?fBBg%Z#u_l<K+RHh$4d=(6Ci)JJ7bVz<-j`hG1K%Cd?8hyh0<O!WW`#NHQ7
z3yljPA~&N=OuzSqDy<r(9D5ye-5iB-MpJy1rlR2b;P!{w>7->UIII`nMMH$<vLn#?
z`gL&*uZZ;$I6p6W6_<#)g@2hWlPz$5KDg;DO~!D3-YQ{8<hVqvBRGy{+r0~YRWr05
zvenJQoRhlUMx8qQ)h>IWrAafviYdM`n|1+@sp&l=dNP0|pvst_z8411g-H%*ZKOn!
zz2|K16Gi10i;R7B{O1By9V>t|F9y)-bf&)FxQYj;&xAa!fObff&VRv8P)&pTUtYDr
z`;X(ee$C=c_pv(%6~p}yX7@XrNoTtbM23e#YM%!6D90fuy1rC2xfEKYf(_uq?qN_q
zM2=A(R>oG%@7;+1UjE<B{eL+m>D?lL>-_)q-bT&;?{-)I|Kqfq`AK%~eU95^+5Spl
zLtX87^V^WScyP^8*MESPPo&TjA?g2H7bH3T#X3C8+=}y|js(N|VJHjc?srK}-%3&B
zR#U|;$f=l<7;uK%dMPuML*JK5bk2DUxrqqulXK~B2Gsa=HJDHT<LNEtwv{HjsDW^}
z+z5zww`u?wRl1of^LTc9@DGG0abkJ-E{suE2{^mcw&X?_m48OAz45Oucwv>hF$Z~;
z3;GD;xMbdSL|le>Dum1^FCWE*HJk#v(GoQx10}cD14aS-N_j^4xIqt)oEot~85=0b
zHBBv;*f@}N^;9mQF|pPWj%=#L^WqA0B7h|}i^cJaMs5g+uR}u>!~ernSJaSCvoxyY
z@27~Hmp8HDU4It6pI*OwTW_P@@3xU;^Kyq(%NzRGJ9xh>TipTPsol{3mzb&8sp8wm
z0N36BZEU`*-~V+s`YZqcF<Q<4zx<*tRO8qKc8U9K2414|Zg!DpQ+~I(QoQWe?EE}g
zRwOkH3NPUs3^)78)9UTs6=0W@O-=WN{$(TBzodq0I)DF1d#_%<+e@a|1Fdn*`QKRI
z=+)|f`u*;z{^wEJ+D%KJqd#vp@E_0ak`Z_gR2i>47hKUHbG2`>;GFU?5XNjBoH0rx
zA*c4DhmL3(?%#k3kt@&>qT$S-m`j{dQ7ASyK!9>cg+%ymfyOcmr-0E@wD5o1eFubR
z_Ss;}P=CLGVWD9{W(Y$>4pTA13`C)0F^aWBv=x1fi8GfPwezdR-4JM1W-OiN45!F7
zP_A+8?<pMWDd8|g$Z&>C<d~VoDbp6F&ypD68RqD2kHn}-lEef)Oc2CqL{mx_WFjrh
zVs;frTcL$CYB#Jl5(UrTPqPWjty^dVMdM7;8Gp(|(Xk3nuj`64%$b-Q`0ZSx#Lop)
zRHI5Jddi+BQM9%OhvgSh6feYWGkFOg*ME-UG6}P8((RkRSKgX{;4l}3tkCIPT+cIi
zTcQ?lOO^$m9pT6f6ma5n+6f2=C$CWx$}of1%TEB*$#aYEK3AGBW*HVmA0||RE%UdT
zcz-HU0STzlo1$jq$%Rqy@#t@M8_HN}VTN){ZN;b=9Lx#)T@-eotN_|lP>ajL7E^5x
z%3KsL3}r4bHN6Hgg=}OO^8)B<PL0tMBm3;>$O>sr87)zsKoo7MoN!Qj&TzYx3MS-0
zNW#b1+WCV>b1=8sX2{L}{+J-Q5QXKXA%A0mVre0&LY?djM@)$cL?X<nJNwiDdv&;P
zPnQpOFtbI*DuMlxp)XKdT3|u7p5PqLC}Y5dHd5|ECs7nw>SvdCQ}6|AM#7wF!<I8L
zSA%G6Z4I`5-Fffm>u$A&I|JCQfhd%jV5a-;GvMQX^i~)mte|-5c&f~fm@o^T9e<nc
z2)_(b7U>~|-3S2fzCVW@I0~5y*zwDnr&n3#e<jh$$%##ouEE|HVziB+$@oh_gtNe4
z@33td*Cy`nlsu-b@VK*lyL5cE!sCuvEUGc5cNKGtT1_>JjxcA&WY~Wvf?4%w@7GDH
z3&OyCgYd%2FS;As>c$Mr+C!oyQGZG_Y;Enme*@nFd|zZ8kKoc9DoeV%@p+$<&qXyG
z8(i0|QZ3oeqThR`TkZp(Wue(lw4C3>)ge)6-9nLJ7B6{R8DHXab^Ma+d+*;k&c8EO
zjdEiYor)J6Y(Q*y9mJ!;`MRdBUdv}9Rc%ewscO4BzA4Fl*w+ql{qNX<jekAZwpaJ>
zs5fa*v_D!Lh=mf>0;YBZhMP&JoXqZE218dDPq{O#!Egq(ST?)6hx_m|>>lsGu*ZfY
zW_B2%Tw901W|*BwU6h;1ymglyVUb#aLcuAgMl~75v#n);gHj!UW&Q^NIZEr0SQ1@P
zfZv5B3c*bH)BmETUz`Pk34c+}!|?cIL9t6?9A?NV@)VaszXk_F;{c8+PtmRKAr%T$
z*zFg9Tp1t48YIIg;|`tR7hBNy+s9w`cHbYo*?+sel@mRQwQ&3CZiPoe#vbXN6By#i
z2wU*UN-IVNQ~NCg<?z$9AZTOMo&(>2oSnkcueJ^xe(Ih-g>Po37=OeZe(pX0FUUmn
zZ(*L>LJRLF`|myXDihpp*pK$K|C+5S{v&yA6TDM=m>BSy_^;dV_Uqq&^*2}b-;dH(
z@!u-`Tg87a{`=8q@kg{K{clUo3{M{D6X0v~|9Y=e*Z-TH{!0HpN?Yu;yY-$CNlk=4
zfKsimjZbX--r{}{7JvPfKcnCZfUN>Gp;d^c!-+k!C$#j(Ar|4TQze*{YRHinQ@?_(
zQ4OEGf~~);mG>@Rg<rkWPoXC${YS;_BGrB2RD@WiN_sivU#8vn!~cZ-3hn!cK(b7t
zQbx(V`QO(EfqXx&M4Qr*@^KU@JWWtuD%-pbj-{`CE~2z6rhiisE6j-rxiVYJV30D-
zzO_a+E#Rjou$PRXwUwpa*bLZt0b5zx3(rZCw93qQZKm#)R(@#8F28~*qwzN6nRXY$
zpQ;evUtmZWt$_H#l4XS0Xh8Nym*ur+HJ??U6@>a``K;$9?hS=tNO)E37u>rkL(K~{
z5oe!NF%0MX6Mr3*rj=fl4$;Lu2q}t19kA#6$9jK-%i*nc;>yC`C?;2u(TrBegw)YG
ztoK*Y3U9AK>jL2W3G9MJL3v)3Q8)-=D!3k$(zG`c)ITmJJ4<qxz#>x=dYwb`yry9<
y`BMxRHtlM;GqTpY{v2<Q2vd0RZxXE9s;%0pt=ji*{|yWP0RR8K8-(2ePyhhh;8kY;

delta 3571
zcmV<P4Gi+E9gQ52Jb(Rj+qiQ1wfrk~<m)8qg_LB=&Xu)2%{fl$xfjQ^FL(3i=1mNd
zD+x6O@BmPbn)rY3;7cND`ZGQ!uOs}BP~c**yIAZOKuf~23Ceh;iU~@Lvx0W_CPeCF
zPNwY1gS1|+*V`Hl?Ek%9ulaw!x7mNvAN00*F9(}jTboaM{eR8gX735~9%lOMTd6dW
zPkLWHSChGal14ZenrJGxN+W=bXu`xe$%xhr6DqnHN=-);^Ax<Uw1VYS6^zVdPNtZ`
z?8Isl>>VAnLK`SmkPK5eD~A}Xxzado1r;g<MtS+E^{qsPL}8eAsl*W}=x-<$6+DGm
zKO#l3_}Nc-Nq;ZOQDu@A+Cc<@nJ9BOl43@4lyJZ`$`Q#Bp6wkSJdbE*fG1iPD(!YN
zvrkmw#bU@IN}*O=CdNW_E7T-vHjd74elBFL(kKSXN0KNl%S@LNqbZ?W6UtHAw>Tw~
zrH~PZ!~YEEGhqbe7(MnY;eNI3;Yf*6W@xbma>rCp%73B3(=|eu95t$LW;l)u&vC#J
z%@)Gy^{lwQwW6-tU((v_|BSE_)x$Y}8|;5?b92zN{~P_ymHmH=HrqpE<BaW}2&Gf#
zbRvL4NS(r9un_@Jt}rVlzF}mXLZ@%u=R}jt4pe?bsZcs=<PZ?0jIr}SGl@BJO$k#c
zm`T)TzJFlMIu+fE4W#PWw`1feiN+MPEHR3#rP>o*OTie*cZ8F%qnu937#&K9g-}!r
zIbYbt?vzR?B<69ut+Vq6M>2I-EiP>sp7oRUq;D**$ngXjW?IM;K3_!9n28}_-fe2;
zDR92*HI7Kh^f8X9(uSB$=esnaZTny2v|z+IhkuU~WCco<=;A9(!A<*rW4#&wy&MeI
zSNs1l+UL(P<T#=nq2o07WA0S<qx8Dlf%xJgGJtdh$#2d%INcACSgX!2h82=>J%Y}^
zs&40A2#_gU{OBy{L7rcF{?-EhCu`U5|3$AgoSEPwI*zmH9Yceg_W#Rf{<pq9*w|R@
z|9{75jWp?u@;rq-yU_1Q5lvAO<LuK#>QPk%-{~{C&z~VVc5XB|4Bc>X5d{QZn-ViP
zg)i1y{_)n@fqyvHX=4MM%)ySu=Z%GrQj$w?L}FpTz@MeicCH2*N5jq)v^B<=sHc5i
z`=$XM;-YxO$hdu2HFT;Dcbxx5r7j6`uzzjCO+Z!|=44a}z1k<O0#xR_V*PKq{|g%D
z_s$4z*#Cq6)<$Fh_qGPB`2SJb8l2clL3*z;L3hZ+usbD6qYSke)t&W|{=Z-L9X@Uk
zA-2_~TA79vg&FLP&})KI!B0@vj8LOq1)#DC<|RX!5LQe`vZUEouO!tpBP=dN$bUr`
z86xw8Gchd$N3JV&twE;C1SrZB{L8ptgrn_0`$@&5C@PhwtFbgnRM!LEWKvaunPEYN
zgv63FB|4k@t-{~kC@hPdXgtv-=^D=+20bq@g=4`O<>L<)AOZ*$!cSXSAJbTkg1gZG
z5LmMbVm0UTeT_i0Ju6JABZI|uV}H-7p4@M=8?VLR$&^6?Uw~6?+!6d#pTUHp^$rui
zR?ryqu@nrO+Uf|g`jtY*q`jT1@LJD8_1qATpY&4NvgEJS2W1qt-|O{#zZT3S)60DW
z5Ce`znCTP_#r`MEN{tI7qA<`V(cS+<l~yf7PW;BZX^cWSqZz)+GEs7USbq;9+7tln
zMhn%@fIYtb1`5rU1)%f!^Fm>-NpcdnxTv_(D>TF6OqNv!xVT7fJ4%x=TwHW26cRbE
zu;|!~<Jr#orM|lT-3evdb}$#6?Q~IR&Tx0Dp;u+lOt5l_@65tnqGM`$kBFY6utZdY
zxn$E^e&CQcASIIgJ!f-Y%zvrASd^;k@PC%5np6Q~MVZ2SuQ&DmCPq3$eJ<o#4Yebp
zqU*OIH4AZXb=H=!H;&`x`GWIVCr;OE9_#M@<}dLS&X6C99FK(5zQ*UtibKI~V`(r7
zDYVE0OX1hOqhLgc9HTy}!PY&{Z5aI4A<wE++U?_iIV9QrGJu=n|9@U@y%GQS`x{%U
z`2R85_Z0s(&8QC<t}8;^&n7nQw^eOY>WPr_e{GPIoc&}YvSmqxm4?Y<!SF8h$db83
zSW?ipQj~?YxUtJbYOXH^oFTVS(+uU%_hk}Y#2rInf_wYq;`G}gHKAq$=hJ_CdWW%H
zrHL*ZC>$-fLgK@}27dxZm2T(CJf7bj{R5FnoXTCj3S-oD2F~xbEQL`$rIBkNsMIIC
zG|T;jgFG(;eFSz~#qB00uA)2>LgtiLH(tve&bZuaiUyN`le_PFv)zBDJg0ozvg=7f
zjoP4$4Ho2@W)@9sg59Pus@`)ksoyb<Y(2xv;u>-yfF(7H$$#;aMs661Zz4mL!~eld
z*UXTwg|wR6hcdG5lbOu)<|)3;LSMaPR~zd4ElJfa+&D*dA^uv)-$m5lIs#d>Z`p1c
z|4YnO?5zCVbATJ~|7^W%p8xeWSM~o#X^m>?)dy|iHjX`HzanZkfGtM%_6K>kx_Or)
z#j8%uE-sSgjen#TpzspDz;J7TJgcAXU4wRcv#ITz(7$X&`(55rXxsnC`>$TV+fSzX
z1I=;6{@>i#Y~=s_!Jxmo|MMtq?Y38+qd#s3_>X7zDI`1xs!YIN2(IXmA&i6sS#nPK
z7zksaCkVzVjf9-qBO*GYSvZjcCPbk?Pl$$dLt-IuMt?=A*xVoi${`aH;g<y&%R;3B
zM$gdV|7GtT5T4s-Loq}B0*0lA37H`b5jjl7408~rj>Ra}5)rg8^oes9VA=8Y%iR!o
zRR)$$3x-qV8YtH|_D3>~^o(#ABIGzjCJM~W<dkWP(-&6^@*E3v=T2f&XGvlLzfKUu
zXhbtg7=Pp<E6rqf7ROtug*0Y2%r+7w&*2ZV2+O5gSOZ1lT+$iJMA5MdF}LfAb1ayc
z8~oiuqQpN-s;EYlO!SmJPoijT4UVcWq9|Ud+g9=tK5YCL#Z?w&{iHuIeXqPX0l{G|
zN?GI6#oS(I?x;vD@K!tvJUhmb0TgiRY}zRZ34f=rQ4`8Ahu6zb0MzMoOYZ?!nlNSs
z7Dc~Kr~-S<-yTR%i3&&{joy|tqfahFgAd1lv&&GWQVRphG1KPJ00(yhe;1`)C#!(w
zjiY7Zi>bC7WiHAWhBKG*nqEVgLN>CKc?GlxtkV-C`|SD1OKEl)t#F<|6m6@5a8P>A
zaDS(h2_|GJB;jN1?EX%q*_hj11G1aK?-S$}qp-3xY%EBuOhgqRCqrg5+cHxT0+9$a
z>h?Z$$X*>C*xlvxFU;*FW0k<c$nY1qtxT}sT2F8e=aezvLK`jjsFNrPBK4!It10+G
zG$Ud5v=PfWnX5EfTU&$epLgFo{`%Y9;eT!ldkqw&G6T$T|9u90IEdZ~!-Q27uN_a7
zSrL;7!m|^z9O0K?$`U=quo?lOUH9j(3&)`-0=s@%^Ykju{jVfCJw3IR)iv1vM2xjD
zJehbYsBj(x>;txK6WYZ6-Acr?9Uga=Z<m43c6i)1lSK{TtY0S_V^%ZGqGK$Waeo>1
z--%$>Jld0alIfB#aNi)ju=<PcaJs%QshN97)FjG?hVAYB_ix}!zz?J-*c{>!TzODu
zS$BtG?+fy0Sug8`&~>|Vmuz>@@1xUg_W{uIqS<b=9N#9@AyH_<LXl%0FJ)YVugJL$
zzm)p^`!`PV?~GTY+&D#N;spnr*MA#X2lc2)zG>;}7Z7rhsjepKOm*E+=adva?dt}-
z{&#HA#vX0goBMavyR;}e7%eu$!iZ`CQwxFNfYuo&vpSf=aBkO_a_3ru;|yl8>UQ^z
z4&X=FJ2`k^w+%<kEf}F(+kn9quboO=)|<$@b%*s~lEzhxl2cBNX)=aqM}Nx_)5?_x
zEBs#t6ew*#Vp(+eAN(pTNeFJj@BSAJ`{FzhOo(z3hNmYFhFu!xFhfp}XSh`QH8>O+
zQ#heKLpQ(2R4P<qwO;^oWnvKPkc^;AICP4i?1jc(KK#7D_x|wB!P}kfg6K)Cg<DT|
zI6e|G_C)WV!VpJB*+NWKnSU`dlp0<Qt3NyoiZ({=CGZ8v`58R@Z0~`?5B-a$@WreY
zgP6mQ>(BoKauNMY80VJI;`_n=`;}{z3vL(eTSwa8XKTy<NKx3@@f05>2fQKw>ks;u
zzW*9*t?qw6N?YZBtNd@3|GE6{Tkpkh(c0|4y?JM3@<5*e-(dgOw}1N0@Bg-XgTc!F
zKSo=uwL4Is5lKyko<g<mZ4(rGk8#lt{}uXce@Efq2uPkwRLbnMH~;<mFl5wzT;)=^
z(vtFV6mEN(%(QZabL@^_-KR)pNGjTCtbFovnWQ~2osw8#K}_C}+q(jWC=>BolWcQi
zKRki`WDK3{JnP2>V1M@oZ0Ff}cuta}Qx(Q*Gjy*q^FwoX^*KzHjJKiKvbO+#szQ!?
zNgx4Q0r3|%mT6L}6+IYTRotQVqE2;GC}iBOsPnucy`c~c3HOBCYuXj*-BzIHg_?--
zkE$F7CI3iAm0^_^m3zXM*C6ESi#x$y>K~f@H7SR;Hj=3-e{8FoT+2o~S)m-zB<rZz
zUn48Ly@sqyh`&x@7b5cXwdg1u2ACSHhm~68trYe5%N4(h-X*XomxNvy6+Ex2+Ess#
t;L@U9uXje*Iydj*oe^OQzt2AouxhKeYX7g>{{;X5|NpC6`%C~%007KW1PA~C

diff --git a/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/questions.yaml b/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/questions.yaml
index 99ff81f35..dbef2a71d 100644
--- a/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/questions.yaml
+++ b/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/questions.yaml
@@ -1,4 +1,15 @@
 questions:
+  - variable: clusterType
+    label: Cluster Type
+    description: Select the type of the cluster where vSphere CPI will be deployed
+    type: enum
+    default: "rke"
+    options:
+      - "rke"
+      - "rke2"
+      - "other"
+    group: Configuration
+
   - variable: vCenter.host
     label: vCenter Host
     description: IP address or FQDN of the vCenter
diff --git a/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/templates/vsphere-cpi-ds.yaml b/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/templates/vsphere-cpi-ds.yaml
index 54f9af541..2e4ee8e41 100644
--- a/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/templates/vsphere-cpi-ds.yaml
+++ b/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/templates/vsphere-cpi-ds.yaml
@@ -5,29 +5,33 @@ metadata:
   annotations:
     scheduler.alpha.kubernetes.io/critical-pod: ""
   labels:
-    component: cloud-controller-manager
+    component: {{ .Chart.Name }}-cloud-controller-manager
     tier: control-plane
-    k8s-app: vsphere-cloud-controller-manager
-  name: vsphere-cloud-controller-manager
+    k8s-app: {{ .Chart.Name }}-cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 spec:
   selector:
     matchLabels:
-      k8s-app: vsphere-cloud-controller-manager
+      k8s-app: {{ .Chart.Name }}-cloud-controller-manager
   updateStrategy:
     type: RollingUpdate
   template:
     metadata:
       labels:
-        k8s-app: vsphere-cloud-controller-manager
+        k8s-app: {{ .Chart.Name }}-cloud-controller-manager
     spec:
-      nodeSelector:
       {{- if .Values.cloudControllerManager.nodeSelector }}
+      nodeSelector:
       {{- with .Values.cloudControllerManager.nodeSelector }}
         {{- toYaml . | nindent 8 }}
       {{- end }}
-      {{- else }}
+      {{- else if eq .Values.clusterType "rke" }}
+      nodeSelector:
         node-role.kubernetes.io/controlplane: "true"
+      {{- else if eq .Values.clusterType "rke2" }}
+      nodeSelector:
+        node-role.kubernetes.io/control-plane: "true"
       {{- end }}
       securityContext:
         runAsUser: 1001
@@ -36,9 +40,9 @@ spec:
         operator: Exists
       - effect: NoSchedule
         operator: Exists
-      serviceAccountName: cloud-controller-manager
+      serviceAccountName: {{ .Chart.Name }}-cloud-controller-manager
       containers:
-        - name: vsphere-cloud-controller-manager
+        - name: {{ .Chart.Name }}-cloud-controller-manager
           image: "{{ template "system_default_registry" . }}{{ .Values.cloudControllerManager.image.repository }}:{{ .Values.cloudControllerManager.image.tag }}"
           args:
             - --v=2
@@ -61,8 +65,8 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    component: cloud-controller-manager
-  name: vsphere-cloud-controller-manager
+    component: {{ .Chart.Name }}-cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 spec:
   type: NodePort
@@ -71,4 +75,4 @@ spec:
       protocol: TCP
       targetPort: 43001
   selector:
-    component: cloud-controller-manager
+    component: {{ .Chart.Name }}-cloud-controller-manager
diff --git a/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/templates/vsphere-cpi-rbac.yaml b/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/templates/vsphere-cpi-rbac.yaml
index 56b8fa64c..4330af276 100644
--- a/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/templates/vsphere-cpi-rbac.yaml
+++ b/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/templates/vsphere-cpi-rbac.yaml
@@ -1,14 +1,15 @@
+{{- if .Values.cloudControllerManager.rbac.enabled -}}
 # Source: https://github.com/kubernetes/cloud-provider-vsphere/blob/master/releases/v1.19/vsphere-cloud-controller-manager.yaml
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
 rules:
 - apiGroups:
   - ""
@@ -105,23 +106,24 @@ roleRef:
 subjects:
 - apiGroup: ""
   kind: ServiceAccount
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 - apiGroup: ""
   kind: User
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
 roleRef:
   apiGroup: rbac.authorization.k8s.io
   kind: ClusterRole
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
 subjects:
 - kind: ServiceAccount
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
   namespace: {{ .Release.Namespace }}
 - kind: User
-  name: cloud-controller-manager
+  name: {{ .Chart.Name }}-cloud-controller-manager
+{{- end -}}
diff --git a/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/values.yaml b/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/values.yaml
index 4c297fd40..708112e82 100644
--- a/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/values.yaml
+++ b/charts/rancher-vsphere-cpi/rancher-vsphere-cpi/100.0.0/values.yaml
@@ -14,6 +14,11 @@ cloudControllerManager:
     repository: rancher/mirrored-cloud-provider-vsphere-cpi-release-manager
     tag: v1.2.1
   nodeSelector: {}
+  rbac:
+    enabled: true
+
+# Set to "rke" or "rke2" to apply the node selector label appropriate for the cluster
+clusterType: "rke"
 
 global:
   cattle: