Table of Contents
Puppet centralized configuration management under Redhat
Home Backend Development PHP Tutorial Centralized configuration management of puppet under Redhat_PHP tutorial

Centralized configuration management of puppet under Redhat_PHP tutorial

Jul 12, 2016 am 08:57 AM
android

Puppet centralized configuration management under Redhat

An introduction to puppet
Puppet is a configuration management tool. Typically, puppet is a C/S structure. Of course, there can be many C here ,Therefore
, it can also be said to be a star structure. All puppet clients communicate with the puppet on the same server. Each
puppet client connects to the server every half hour (can be set) and downloads the latest Configuration file, and configure the server strictly according to the configuration file
. After the configuration is completed, the puppet client can feedback a message to the server. If an error occurs,
will also feedback a message to the server.

Second installation environment
Server side: 172.25.254.2 vm2.example.com puppet master
Client side: 172.25.254.3 vm3.example.com puppet agent
Client side: 172.25.254.4 vm4.example .com puppet agent
Important: Resolution and time synchronization are required between the server and all clients, otherwise the verification will fail.

Server side:
Install these packages first
[root@vm2 puppet]# yum install -y puppet-server-3.8.1-1.el6.noarch.rpm facter-2.4.4 -1.el6.x86_64.rpm ruby-augeas-0.4.1-3.el6.x86_64.rpm rubygems-1.3.7-5.el6.noarch.rpm rubygem-json-1.5.5-3.el6.x86_64. rpm ruby-shadow-2.2.0-2.el6.x86_64.rpm puppet-3.8.1-1.el6.noarch.rpm hiera-1.3.4-1.el6.noarch.rpm

Start the service :[root@vm2 puppet]# /etc/init.d/puppetmaster start
Starting puppetmaster: [ OK ]

Check whether port 8140 is open
[root@vm2 puppet]# netstat -anltp |grep ruby
tcp 0 0 0.0.0.0:8140 0.0.0.0:* LISTEN 1118/ruby

Client:
Install these packages: yum install -y puppet-3.8.1-1 .el6.noarch.rpm ruby-shadow-2.2.0-2.el6.x86_64.rpm facter-2.4.4-1.el6.x86_64.rpm hiera-1.3.4-1.el6.noarch.rpm ruby-augeas -0.4.1-3.el6.x86_64.rpmrubygems-1.3.7-5.el6.noarch.rpm rubygem-json-1.5.5-3.el6.x86_64.rpm

Initiate authentication:
When the authentication is initiated for the first time, it will show that there is no certificate because the server has not agreed yet


At this time, you can view the user who initiated the authentication request on the server


Signing certificate
Delete certificate
puppet cert clean vm3.example.com


Check on the client whether the authentication is successful
As shown below, the authentication is successful.


Three servers realize automatic authentication
On the server side
vim /etc/puppet/puppet.conf
Add this line under main
[ main]
autosign = true

Create the autosign.conf file in the /etc/puppet directory with the following content:
*.example.com #Indicates that all hosts in the example.com domain are allowed
/etc/init.d/puppetmaster reload

You only need to apply directly on the client to succeed
puppet agent --server vm2.example.com --test


In practice, sometimes the client host name is modified, so the certificate needs to be regenerated:
1) Execute on the server side: puppet cert --clean vm3.example.com #The original client host you want to delete Name
2) Execute on the client side: rm -fr /var/lib/puppet/ssl/*
puppet agent --server=puppet.example.com

The first execution of puppet The code is in /etc/puppet/manifest/site.pp, so this file must exist, and other codes must also be called through this file.
Four server resource definitions:
cd /etc/puppet/manifests
vim site.pp
file {
"/mnt/puppet-3.8.1-1.el6.noarch. rpm": client destination
content => "puppet:///files/puppet-3.8.1-1.el6.noarch.rpm", server source
mode => 600, client Get resource permissions
owner => puppet client gets resource user
}

cd ..
mkdir files
will puppet-3.8.1-1.el6.noarch. The rpm package is placed in this directory
vim /etc/puppet/fileserver.conf
Add the following at the bottom
[files]
path /etc/puppet/files
allow *

Client side verification This picture shows the changes in resources under /mnt
and also verifies the server configuration


Software package and service definition
Continue Edit the site.pp file just now and add the following
package { ##Software package definition
"vsftpd":
ensure => present (install present, uninstall absent)

}

service {##Service definition
"vsftpd":
ensure => running
}

file {
"/etc/vsftpd/vsftpd .conf":
source => "puppet:///files/vsftpd.conf",
mode => 600,
notify => Service[vsftpd] is equivalent to reload
}
and then in the client End test


User creation
Continue to edit the site.pp file and add the following
user { "xp": uid => 900, ##Create user
home => "/home/test",
shell => "/bin/bash",
provider => useradd,
managehome => true,
ensure => present ,
password => westos
}


#exec { "echo westos | passwd --stdin xp": ##Change the password encryption method so that it is encrypted under /etc/shadow The password will be in clear text
#path => "/usr/bin:/usr/sbin:/bin",
#onlyif => "id xp"
#}
Client verification


crontab task
Old rules on the server side, continue to compile the site.pp file
cron { echo:
command => "/bin/echo `/ bin/date` >> /tmp/echo",
user => root,
hour => ['2-4'],
minute => '*/10'
}

The task will be generated in the /var/spool/cron directory of the client
Verified on the client


In short, puppet is a good The management system is an indispensable tool for automated operation and maintenance in the future. You can build an lnmp architecture yourself and install the source code.
I will release it later. I hope everyone can discuss and make progress together.














www.bkjia.comtruehttp: //www.bkjia.com/PHPjc/1110195.htmlTechArticlePuppet centralized configuration management under Redhat - puppet introduction puppet is a configuration management tool. Typically, puppet is a C/ S structure, of course, there can be many C here, so it can also be said...
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Hot AI Tools

Undresser.AI Undress

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress AI Tool

Undress images for free

Clothoff.io

Clothoff.io

AI clothes remover

AI Hentai Generator

AI Hentai Generator

Generate AI Hentai for free.

Hot Article

R.E.P.O. Energy Crystals Explained and What They Do (Yellow Crystal)
2 weeks ago By 尊渡假赌尊渡假赌尊渡假赌
Repo: How To Revive Teammates
4 weeks ago By 尊渡假赌尊渡假赌尊渡假赌
Hello Kitty Island Adventure: How To Get Giant Seeds
3 weeks ago By 尊渡假赌尊渡假赌尊渡假赌

Hot Tools

Notepad++7.3.1

Notepad++7.3.1

Easy-to-use and free code editor

SublimeText3 Chinese version

SublimeText3 Chinese version

Chinese version, very easy to use

Zend Studio 13.0.1

Zend Studio 13.0.1

Powerful PHP integrated development environment

Dreamweaver CS6

Dreamweaver CS6

Visual web development tools

SublimeText3 Mac version

SublimeText3 Mac version

God-level code editing software (SublimeText3)

New report delivers damning assessment of rumoured Samsung Galaxy S25, Galaxy S25 Plus and Galaxy S25 Ultra camera upgrades New report delivers damning assessment of rumoured Samsung Galaxy S25, Galaxy S25 Plus and Galaxy S25 Ultra camera upgrades Sep 12, 2024 pm 12:23 PM

In recent days, Ice Universe has been steadily revealing details about the Galaxy S25 Ultra, which is widely believed to be Samsung's next flagship smartphone. Among other things, the leaker claimed that Samsung only plans to bring one camera upgrade

Samsung Galaxy S25 Ultra leaks in first render images with rumoured design changes revealed Samsung Galaxy S25 Ultra leaks in first render images with rumoured design changes revealed Sep 11, 2024 am 06:37 AM

OnLeaks has now partnered with Android Headlines to provide a first look at the Galaxy S25 Ultra, a few days after a failed attempt to generate upwards of $4,000 from his X (formerly Twitter) followers. For context, the render images embedded below h

IFA 2024 | TCL\'s NXTPAPER 14 won\'t match the Galaxy Tab S10 Ultra in performance, but it nearly matches it in size IFA 2024 | TCL\'s NXTPAPER 14 won\'t match the Galaxy Tab S10 Ultra in performance, but it nearly matches it in size Sep 07, 2024 am 06:35 AM

Alongside announcing two new smartphones, TCL has also announced a new Android tablet called the NXTPAPER 14, and its massive screen size is one of its selling points. The NXTPAPER 14 features version 3.0 of TCL's signature brand of matte LCD panels

Vivo Y300 Pro packs 6,500 mAh battery in a slim 7.69 mm body Vivo Y300 Pro packs 6,500 mAh battery in a slim 7.69 mm body Sep 07, 2024 am 06:39 AM

The Vivo Y300 Pro just got fully revealed, and it's one of the slimmest mid-range Android phones with a large battery. To be exact, the smartphone is only 7.69 mm thick but features a 6,500 mAh battery. This is the same capacity as the recently launc

New report delivers damning assessment of rumoured Samsung Galaxy S25, Galaxy S25 Plus and Galaxy S25 Ultra camera upgrades New report delivers damning assessment of rumoured Samsung Galaxy S25, Galaxy S25 Plus and Galaxy S25 Ultra camera upgrades Sep 12, 2024 pm 12:22 PM

In recent days, Ice Universe has been steadily revealing details about the Galaxy S25 Ultra, which is widely believed to be Samsung's next flagship smartphone. Among other things, the leaker claimed that Samsung only plans to bring one camera upgrade

Samsung Galaxy S24 FE billed to launch for less than expected in four colours and two memory options Samsung Galaxy S24 FE billed to launch for less than expected in four colours and two memory options Sep 12, 2024 pm 09:21 PM

Samsung has not offered any hints yet about when it will update its Fan Edition (FE) smartphone series. As it stands, the Galaxy S23 FE remains the company's most recent edition, having been presented at the start of October 2023. However, plenty of

Motorola Razr 50s shows itself as possible new budget foldable in early leak Motorola Razr 50s shows itself as possible new budget foldable in early leak Sep 07, 2024 am 09:35 AM

Motorola has released countless devices this year, although only two of them are foldables. For context, while most of the world has received the pair as the Razr 50 and Razr 50 Ultra, Motorola offers them in North America as the Razr 2024 and Razr 2

Xiaomi Redmi Note 14 Pro Plus arrives as first Qualcomm Snapdragon 7s Gen 3 smartphone with Light Hunter 800 camera Xiaomi Redmi Note 14 Pro Plus arrives as first Qualcomm Snapdragon 7s Gen 3 smartphone with Light Hunter 800 camera Sep 27, 2024 am 06:23 AM

The Redmi Note 14 Pro Plus is now official as a direct successor to last year'sRedmi Note 13 Pro Plus(curr. $375 on Amazon). As expected, the Redmi Note 14 Pro Plus heads up the Redmi Note 14 series alongside theRedmi Note 14and Redmi Note 14 Pro. Li

See all articles