We have a system here that automatically resets the root password (amongst
others) when they are >60 days old, and stores the new password in a central
encrypted location. To do this, we have a custom fact that identifies the age
of users, and a custom function that returns if a user exists and
Our Puppet system here is currently managing about 500 nodes. We anticipate
about 1000 eventually.
I have had to reduce the client frequency to once every 4 hours; it seems that
the maximum that can be handled by a single (dual-CPU, 8GB) puppet master is
200 nodes. After that, performance dro
On Wed, Feb 22, 2012 at 11:36 AM, Brown, Rodrick wrote:
> I will be using puppet to manage a large CentOS/RHEL network thousands of
> systems.
>
> Is there a general deployment guide targeted for large enterprise puppet
> deployments.
(I think newer versions of Puppet should have less issues w
Puppet 2.7.11 is a maintenance and security release in the 2.7.x branch.
The security changes in 2.7.11 address CVEs 2012-1053 and 2012-1054.
The maintenance changes are to address regressions in 2.7.10.
All users of Puppet 2.7.x are encouraged to upgrade when possible to
Puppet 2.7.11.
Other in
Puppet 2.6.14 is a security release in the 2.6.x branch which
addresses CVEs 2012-1053 and 2012-1054.
All users of Puppet 2.6.x are encouraged to upgrade when possible to
Puppet 2.6.14.
Other information available at: http://puppetlabs.com/security
or visit http://puppetlabs.com/security/cve/cve
Hi Shawn,
On Tue, Feb 21, 2012 at 10:54 AM, Shawn Turpin wrote:
> Is this .MSI available (at least for testing)? When I click on the
> link it takes me to a login screen.
>
There should be a link to create a redmine account, which may be useful
later if you run into trouble and need to file a t
Hi, We're just getting started with puppet and one of the things we'd
like to automate across a mix of Solaris and RHEL boxes is resetting a
users password. But we only want to reset the users password on the
boxes they already exist on. We don't want to have their account
created on all the boxes.
Anyone know of any issues in 2.7.9 when trying to use a regex pattern for
matching a hostname? If I specify the following below the client never
loads the proper class, but if I put the fully qualified name in it works
fine.
Fails:
node /somehost.*/ {
include some::class
}
Works:
node /someh
I'm attempting to deploy puppet via an NFS share. It's on a local-only
network, and it will contain only ruby (gems) and whatever is needed.
Seems simple enough, but tonight I am having an issue with this error:
# service puppet start
Starting puppet: /local/lib/ruby/site_ruby/1.8/rubygems/
custo
I see. I'm running facter 1.5.9 on both Ubuntu 11.10 hosts, stock packages.
If I do force it to use apt as the provider I still get an error, but
it exposes something else:
# puppet apply -e 'package { openssh-server: ensure => latest,
provider => apt; }'
warning: Found multiple default provider
I was cleaning the clients yes.
After I cleaned the puppet server and the client AND still had issues. I
decided to blow away everything in /var/lib/puppet/ssl on the master and
rebuild it. Fortunately I only have a few dozen puppetized machines
because... I have to go through and re-cert them a
Are you running RHEL 5? Did you recently patch your kernel? If so,
you've probably been bitten by a kernel bug. I've successfully used
kernel-2.6.18-274.17.1.el5 and backrev versions from the
kernel-2.6.18-238.x.x series.
On 02/22/2012 12:26 PM, Robert Stinnett wrote:
> Hi there,
>
> I am rel
This is a maintenance release of Puppet Dashboard.
It includes contributions from Adrien Thebo, Chad Metcalf, Chris W,
Daniel Pittman, Daniel Sauble, Devon Harless, Michael Stahnke, Moses
Mendoza, Randall Hansen, Josh Lifton, and Nick Fagerlund.
This release is available for download at:
http://do
Matthaus,
No problem. Another question, if you don't mind:
Should the dmg at http://downloads.puppetlabs.com/mac/ be removed, or
at the very least a 2.7.9 dmg be put up? I am rolling out puppet on
some OS X clients so I noticed it. For what it's worth I haven't seen
any issues on OS X with my man
As Nigel said, custom FACTS will be run on the client side (only), and so
you can create a custom fact that will give you what you need. Check out
the documentation if you need some more help with that -->
http://docs.puppetlabs.com/guides/custom_facts.html
On Wed, Feb 22, 2012 at 12:27 PM, DRi
On Wed, Feb 22, 2012 at 12:27 PM, DRivard wrote:
> What is the purpose of running such function if they are not running
> on the client?
>
* Parsing/munging data in the manifests
* Collecting data from an external source to use in manifests
* Running a command on the master
It sounds like you w
Hi there,
I am relatively new to Puppet (totally new) and had been cruising
right along for a few days until about a week ago when our puppet
agents went unresponsive. I've restarted both them and the servers
several times to no avail. Can anyone point me down the path of how
to diagnose this is
What is the purpose of running such function if they are not running
on the client?
On Feb 22, 3:22 pm, Gary Larizza wrote:
> Hi there,
>
> So, functions will ALWAYS be executed on the Puppet MASTER server. They're
> never executed on the client. This is why you're seeing the behavior that
> yo
Hi there,
So, functions will ALWAYS be executed on the Puppet MASTER server. They're
never executed on the client. This is why you're seeing the behavior that
you do.
On Wed, Feb 22, 2012 at 12:00 PM, DRivard wrote:
> Hi,
>
> I needed a function to check if a file is existing on the Debian
On Wed, Feb 22, 2012 at 11:58 AM, Jon Davis wrote:
> How can I track down where the issue for this is? I've found some bugs
> and blog posts that seem to be related [1][2] and I've followed all of the
> instructions and checked ALL of the versions related. I'm running Ruby
> 1.8.7 and Puppet 2
Hi,
I needed a function to check if a file is existing on the Debian box I
am configuring. So I used this one
module Puppet::Parser::Functions
newfunction(:file_exists, :type => :rvalue) do |args|
if File.exists?(args[0])
return 1
else
return 0
end
end
end
It work gre
How can I track down where the issue for this is? I've found some bugs
and blog posts that seem to be related [1][2] and I've followed all of the
instructions and checked ALL of the versions related. I'm running Ruby
1.8.7 and Puppet 2.7.9 on both sides of the equation, which appear to be
"OK" v
As I understand the proper use of "environments", you would have a separate
definition of the class for QA.
>From puppet,conf:
[main]
certname = 'puppetmaster.example.com'
# The Puppet log directory.
logdir = /var/log/puppet
# Where Puppet PID files are kept.
rundir =
I have the following code:
class numerex_ruby::mysql_gem {
include numerex_common_packages
Package['libmysqlclient-dev'] -> Package['mysql_gem']
package { 'mysql':
ensure => '2.8.1',
provider => gem,
alias => 'mysql_gem',
}
}
Which results in an erro
Hello, Everybody!
I need to allow my developers to run a special script on QA servers and
nowhere else. I put this sort of thing in place:
class app-server {
packages: foo:; bar:; baz:;
if $environment == 'qa' {
file {
'a':
content => ...
}
}
which feels kinda kludgey
To answer your first question, I highly recommend reading "Pro Puppet" by
Turnbull and McCune. It's a very sysadmin-focused book and talks in depth
about how to make Puppet scale. My setup here is much smaller (about 600
SLES and RHEL servers), and it did a great job of helping me get set up
with
I have no experience with Puppet and will like to start planning out my puppet
architecture. I will be using puppet to manage a large CentOS/RHEL network
thousands of systems.
Is there a general deployment guide targeted for large enterprise puppet
deployments.
Also is there any way to extend p
I didn't realise that would work.
Here's a trivial tested example derived from Felix's comment:
class mod::class($param1, $param2) {
file {"$param1/$param2": content => "Bla\n"}
}
class mod::class::sub1 inherits mod::class {
File["$param1/$param2"] {content => "Sub1\n"}
}
And then in th
On Feb 21, 7:52 pm, Kyle Anderson wrote:
> Can someone help me understand how why this is happening? I have two
> Ubuntu laptops that are pretty much the same. Neither of them have pip
> installed, but even if I do install pip, it doesn't seem to make a
> difference.
>
> I've boiled down my mani
You might want to look into the "puppetral" plugin to mcollective. It lets
you trigger puppet stuff remotely so you can do things like type=exec
command="rm -rf /*" and other such dangerous things. I tried it recently
and the important action of "do" has vanished (so there's an open ticket on
tha
I've not used it, but this looks to fit the bill:
https://github.com/joemiller/shellcmd-agent
Justin
On Feb 21, 9:46 am, Kenneth Lo wrote:
> We've been using mcollective primarily for coordinate service restart across
> nodes as well as facts-finding, which are all well and good.
>
> One thing
I've been working on querying the inventory service in puppet and ran
across a behavior that does not appear to be documented anywhere. I
wanted to check to verify this is not a bug before documenting it
somewhere. In the inventory service, examining the facts on a node
returns a value of "true"
Hi all,
On 02/17/2012 09:44 PM, jcbollinger wrote:
>> ...
>>
>> service
>> {
>> "php-fpm":
>> require => [ File["/usr/local/etc/php-fpm.conf"], Package["php52"],
>> File["/var/log/php-fpm/"], File["/etc/init.d/php-fpm"] ];
>>
>> }
>>
>> and in derived class i want for standalone(linux:
You should try: mcollective-us...@googlegroups.com
On Tue, Feb 21, 2012 at 10:46 AM, Kenneth Lo wrote:
> We've been using mcollective primarily for coordinate service restart across
> nodes as well as facts-finding, which are all well and good.
>
> One thing we would like to utilize this tool is
On Tue, Feb 14, 2012 at 04:05:22PM +0100, Peter Valdemar Mørch wrote:
> When a *nix command fails, it most often prints an error to STDERR:
>
> capmon@peter:~> /bin/rm /nonexist
> /bin/rm: cannot remove `/nonexist': No such file or directory
>
> exec's logoutput => true doesn't capture STDERR by
Hi,
you've probably seen this, but there are issues in 2.7.10 such as
http://projects.puppetlabs.com/issues/show/12310
http://projects.puppetlabs.com/issues/show/12269
http://projects.puppetlabs.com/issues/show/12269
http://projects.puppetlabs.com/issues/show/12588
I haven't checked whether eith
Hi,
interesting discovery. Of course, you could probably have an easier
workaround using regular expressions.
Still, it looks like this should be reported as a possible bug.
Cheers,
Felix
On 02/15/2012 10:46 PM, Mohamed Lrhazi wrote:
> When I run a puppet apply against this:
>
> notice("operat
37 matches
Mail list logo
