Before one months of Zabbix, basically can be skilled use, but in the deployment of the time found that this thing in the deployment of the time the machine less line, the machine more manual installation hand will be disabled. The first reaction was to use the puppet, and then Master took the puppet directly. Simply learn a wave of their own, after all, this is an automated operation and maintenance of the general trend, the necessary skills ah.
Download Link Interview http://www.cnblogs.com/weijing24/p/5714850.html
Puppet is a C/s structure with a server and many clients. The general operating mode is that the client pulls instructions from the service side and executes. Puppet a very tangled place is the different version of the resulting command is different, mainly the 2.6 version before and after the difference is huge, the main differences such as:
Here is the 2.7 version, the specific implementation of the process, assuming that the server hostname is puppetmaster, the client's hostname is AGENT2
1. Running the service side
Puppet Master
Yes, it is so simple, simple to exceed your imagination, a short 2 words puppet server ran up, of course, the first recommendation with Puppet master--no-daemonize--verbose This is a non-daemon mode, In short, running this command server runs in the foreground, and you can see the entire process of server startup and the process that the agent registers with the server
2, the client to the server to request a certificate
Puppet agent--certname Agent2--server puppetmaster--test
Here--certname can not add, because the client's hostname is AGENT2, is added here is to explain if you do not want to register with the name of hostname, you can use the CertName to follow the name you want to register. Some articles will use puppet agent--server puppetmaster--no-daemonize--onetime--verbose--debug This command to register, in fact, all the same, this is the foreground output log, Error is easy to debug, but I would like to say that if you are the first installation, you do not need to use this debug mode, you just have to make sure that master is turned on, and the host name (hostname is puppet server hostname) is written correctly after--server, Registration basically does not happen error.
In theory, registration succeeds as
But I had a situation where I could not install when I installed it, because I had already installed
As you can see, I am registered here without the Green SSL authentication process, because I have previously registered, although the AGENT2 certificate has been removed on master, but Agent2 has left a certificate on its own, such as
Know the reason to solve it is very simple, delete Agent2.pem can,find/var/lib/puppet/ssl/-name agent2.pem-delete
3, the service side issued a certificate
As you can see in the above figure, there is no +,agent1 in front of Agent2, because Agent1 has already issued a certificate on the server, so how do I issue a certificate?
Also very simple, a command can be.
The first interaction of the entire c-s was done.
Here is still to mention, if the server log off a client certificate, then the corresponding client also need to remove the local certificate , or the next time I will be the same as above, unable to register.
Puppet version of the diff diagram to Http://www.cnblogs.com/taosim/articles/3336986.html
Puppet installation configuration (i)