System environment:
[Root@rhel6u3-102 puppet]# Uname-r
2.6.32-279.el6.x86_64
[Root@rhel6u3-102 puppet]# Cat/etc/redhat-release
Red Hat Enterprise Linux Server release 6.3 (Santiago)
First, preparatory work
1, the host name can resolve each other (DNS or hosts file can resolve each other)
Puppet Master (rhel6u3-102.rsyslog.org 192.168.100.102)
Tags: puppet system management follow ASE PUP product host authentication startUbuntu 16.04 build Puppet service:Puppet is a configuration management tool that enables system administrators to automate the configuration and management of server infrastructure.First, install the softwareMasterCurl-o Https://apt.puppetlabs.com/puppetlabs-release-pc1-xenial.debdpkg-i Puppetlabs-release-pc1-xenial.debapt-get up
Many enterprises use cloud services, automated operations tools are getting more and more fire, the installation and use of three automated operations toolsPuppet, Saltstack, ansible personal point of view;puppet C/S Framework Server puppet master Client Puppet agent process launcher using Ruby processThere is a listening port Master 8140 Agent 8139The principle
Centos6.5 (32-bit) ruby can be directly installed (yuminstallruby) when installing puppet, you must first set the yum source: rpm-Uvhhttp: // Configure
Centos6.5 (32-bit) ruby can be directly installed (yum install ruby)
When installing puppet, you must first set the yum source:
Rpm-Uvh http://yum.puppetlabs.com/el/5/products/i386/puppetlabs-release-5-7.noarch.rpm
Yum clean all
Yum install
Puppet (2)Metaparamters:Multiple resources exist in order, and can be defined in order chain form:package[' Nginx '), file['/etc/nginx/conf.d/default.conf ', service[' Nginx ']Multiple resources exist in order of precedence, which can be defined as the form of a notification chain using "~>":package[' Nginx '] ~> file['/etc/nginx/conf.d/default.conf '] ~> service[' Nginx ']package{' Nginx ':Ensure=> installed,Provider = RPM,Source=> '/tmp/nginx-1.6.2-
During work, the puppet server/client certificate authentication exception is often encountered, and the certificate needs to be regenerated. Common operations are to delete the old certificates related to the server/client certificate, and then generate a new certificate. In this case, a shell script is compiled, which only needs to be periodically run on the Client side. Because the script involves the plaintext password, in order to improve securit
Introduction Puppet is a centralized configuration management system for Linux, Unix, and Windows platforms, using its own puppet description language to manage profiles, users, cron tasks, packages, system services, and more. Puppet these system entities as resources, Puppet's design objective is to simplify the management of these resources and to properly han
In order to SSH configuration file security, ensure that the configuration permissions are not changed, can be unified management through puppet. 1. To create an SSH module related directory: [Email protected]:ssh# pwd/etc/puppet/modules/ssh[email protected]:ssh# lltotal 12drwxr-xr-x 2 root root 4096 Nov 9 1 0:42 filesdrwxr-xr-x 2 root root 4096 Dec 18:15 manifestsdrwxr-xr-x 2 root root 4096 Dec 18:15 temp
CentOS6.5 install puppet
Centos6.5 (32-bit) ruby can be directly installed (yum install ruby)
When installing puppet, you must first set the yum Source:
Rpm-Uvh http://yum.puppetlabs.com/el/5/products/i386/puppetlabs-release-5-7.noarch.rpm
Yum clean all
Yum install puppet-server (master)
Yum install puppet (agent
Release date:Updated on: 2013-04-12
Affected Systems:Puppet Labs Puppet Enterprise 2.xDescription:--------------------------------------------------------------------------------Puppet Enterprise is an IT automation software.Puppet Enterprise 2.x has a security vulnerability. Malicious users can exploit this vulnerability to bypass certain security restrictions. When the CAS client configuration file is us
defined as an array of acceptable return codes or as a single value. Timeout: The maximum time the command runs. If the command runs longer than the time defined by timeout, the command is terminated and handled as a failure to run. When a negative value is defined, the run time limit is canceled. The value of timeout is in seconds. Tries: The command executes the retry count, which defaults to 1. After setting this value, the command retries the set number of times until the correct code retu
Recently, I took the time to study puppet, a foreign open-source software that is said to be a powerful tool for O M in the circle. I originally wanted to compile the latest integrated documentation, and finally reported various errors during the debugging process, according to a google article by a foreigner, there were many incompatibility situations in the latest version. Later, I gave up and found a compatible version. The test was successful and
The company's virtualization platform on the host, with the puppet management, but a single puppet has a big bottleneck problem ~ puppetmaster default is the use of Ruby's own Web server Webrick, it is too simple, Unable to meet puppet client hundreds of concurrent performance is bad.
Ruby is an analytic language, and the performance is certainly not very good;
During work, the puppet server/client certificate authentication exception is often encountered, and the certificate needs to be regenerated. Common operations are to delete the old certificates related to the server/client certificate, and then generate a new certificate. In this case, a shell script is compiled, which only needs to be periodically run on the Client side. Since the script involves a plaintext password, you can consider encrypting thi
The following issues occurred on the agent when you configured the puppet certificate today.can start normally# Service puppet startstarting puppet agent: [OK] After startup but exception # service puppet Statuspupp Et dead but PID file existsTried many times, still so. Therefore, look at the log, the results found tha
Configure automatic signing of certificatesremoving client certificates on the service sidePuppet cert Clean client.aming.comremove the files under SSL on the clientrm-rf/var/lib/puppet/ssl/*server-side change configuration filevim/etc/puppet/puppet.conf Add a line below [main]Autosign = TrueServer-side creation of auto-signed configuration filesvim/etc/puppet/au
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.