Hello,
I have a couple of nodes that always remain in unresponsive state in PE
console. When I run the agent manually, it runs without issues. I can see
that the agent runs in the bg. i.e the pe-puppet service is running.
/opt/puppet/bin/ruby
/opt/puppet/bin/puppet agent agent is listed in ps
One thing to consider is using hiera e-yaml gpg based on certnames. You can put
secrets (db passwords etc) here and they are matched to the SSL certname. In
this configuration an attacker can change their role/profile but still cant
access secrets for a particular node that doesn't match its cer
I don't think you should limit your agent's ability to dictate what
resources should be configured and served. The Puppet client-server trust
model is fairly flat and this provides a decent trade-off between
flexibility and security. If your agent is owned, then as you mention, you
have bigger conc
I'm new to puppet and have been exploring different ways of configuring
manifests, ranging from huge single manifests, through per-node and am
currently looking at the role/profile patterns.
One thing I've been looking at is using a mix of puppet and hiera to set up
a hierarchy based around ser
On Monday, February 9, 2015 at 11:37:39 AM UTC-5, Christopher Wood wrote:
>
> How would I represent an undef in hiera such that a class parameter will
> be populated as undef?
John's doing a better job than I would of talking about the overall theory,
but we ran into something similar and I f
Well, I was thinking of doing a type similar to what xmlstarlet does,
including being able to add and remove nodes. I don't really need the
added behavior of adding and removing nodes from the file right now, so I
left command as a future expansion parameter, but it basically only accepts
'rep
On Wednesday, February 11, 2015 at 11:09:32 AM UTC-6, jwil...@gmail.com
wrote:
>
> Hi all!
>
> I'm working on a custom type that applies xpaths to files. I expect the
> interface to look something like:
>
> xpath { "some update":
> xpath => "/some/xpath",
> command => "replace",
>
On Tue, Feb 10, 2015 at 9:21 AM, jcbollinger
wrote:
> so I have to think that you have some wrong expectation about the effect.
>
>
Based on some reading I did yesterday I must confess that may be true. My
thinking was using that type of declaration made the fact the file was
installed "visible"
Hi folks,
When I put my Foreman/Puppet architecture into production the requirement I
am working against is to allow the use of "service names" instead of the
fqdn of the host to access Puppet and Foreman.
In my testing in my lab I have generated a cert against (I'm sanitizing
here) the service n
I did try to do that for another type I wrote and it was a mess. I ended
up having a single namevar that required a particular format that my type
then processed to get the parameters I needed. I'll take a look at your
example; I'm sure I'll learn something from it. Maybe it's worth another
On Wednesday, February 11, 2015 at 7:04:18 AM UTC-6, Robert Reilly wrote:
>
> All, I am getting the following problem with facter on 5 of my nodes,
> Fact resolution fact='enviro', resolution='' resolved to an
> invalid value: Expected (?-mix:xxx(vs|sv).{2,7}\d{1,2}) to be one of
> [Integer, Fl
https://github.com/puppetlabs/puppet-server/blob/master/documentation/gems.markdown#gems-with-native-c-extensions
apparently answers my question, so I'm looking to port hiera-eyaml-gpg to a
pure ruby module now.
On Thursday, February 12, 2015 at 12:17:41 PM UTC+1, Raphink wrote:
>
> Hello,
>
>
Leam:
Can you reply with your code up too this point. Please include your heira
file, so I can see the hash.
Thanks
Joey
On Wednesday, February 11, 2015 at 4:49:38 PM UTC-5, leam hall wrote:
>
> On Wed, Feb 11, 2015 at 4:18 PM, Joseph Karns > wrote:
> > Hello Leam:
> >
> > I think your look
If more than one parameter make sense for a namevar, then you can use
composite namevars, by using `isnamevar` for sevaral parameters and adding
a `self.title_patterns` method to define how to parse the title and feed
the namevar parameters.
See
https://github.com/hercules-team/augeasproviders
Hello,
I'm trying to use hiera-eyaml-gpg with the puppetserver.
I've tried installing it with:
sudo -u puppet puppetserver gem install hiera-eyaml-gpg
where puppet is the user running the puppetserver.
However, it fails to compile the native gpgme gem:
Building native extensions. This co
15 matches
Mail list logo
