Problem is that if you don't have a way of limiting where sudo entries can
be made, someone can create a new module and grant themselves full sudo
rights there for a large number of systems. When in a large enterprise such
as ours, there are modules that are created and maintained by teams outsi
Hi all,
We're currently on PE 3.8.4.
We need to be able to manage sudoers permissions with Puppet, but control
things so sudoers permissions can only be granted within a specific module.
So permissions could be included via 'include foo::bar' from anywhere, but
the actual sudoers permissions u
You could use Puppet to manage WSUS though using stuff like
PoshWSUS https://poshwsus.codeplex.com/
On Wednesday, June 11, 2014 11:55:51 AM UTC-7, Brian Mathis wrote:
>
> Why not use WSUS? This is what it's made for, it's already part of
> Windows, and can be easily managed from the WSUS consol
--Alex
On Wednesday, May 7, 2014 10:04:23 AM UTC-7, Alex Scoble wrote:
>
> I'm sorry, I misspoke, I should have said that for us Puppet (PE actually)
> has been a moving target in a number of ways.
>
> For instance, we started out heavily using the PE dashboard to define what
>
I'm sorry, I misspoke, I should have said that for us Puppet (PE actually)
has been a moving target in a number of ways.
For instance, we started out heavily using the PE dashboard to define what
classes specific nodes would get and related variables, pretty quickly
realized that that wasn't ve
Hi All,
I got this fully working yesterday on CentOS 6.5 and uploaded it to github
today:
https://github.com/ITBlogger/puppet-kvm
It's very crude, doesn't have any parameter validation or testing and
requires hiera as written, but you may find it useful.
At some point it would be interesting
If you are trying to follow Puppet Labs recommended best practices, it's
definitely a moving target.
On Mon, May 5, 2014 at 5:37 AM, Felix Frank wrote:
> On 04/30/2014 04:28 PM, Alex Scoble wrote:
> > I sometimes wonder how the moving target that is the Puppet DSL slows
>
Heh, John,
I said shouldn't need, not shouldn't use.
Thanks,
Alex
On Wed, Apr 30, 2014 at 3:12 PM, jcbollinger wrote:
>
>
> On Wednesday, April 30, 2014 3:02:14 PM UTC-5, Alex Scoble wrote:
>>
>> By the way, if you are using Puppet 3.0.0 or newer you shouldn&#x
By the way, if you are using Puppet 3.0.0 or newer you shouldn't need the
hiera() function at all.
Just call out your variables like so:
class test (
$a,
$b,
) {
file { 'testfile' :
path => "/tmp/testfile",
content => template("test/testfile.erb"),
}
}
In your hiera yaml it
As far as I know, the only reason you would use params.pp is if you have
sane defaults you want to pass to variables. When you do, you use:
class test inherits test::params {
}
for your init.pp. You don't use an include statement as far as I know.
However, because you aren't defining sane defau
ups.com
> > Sent: Wednesday, April 30, 2014 3:15:03 PM
> > Subject: [Puppet Users] Re: Looking for a better way to use hiera hashes
> than create_resources
> >
> >
> >
> > On Tuesday, April 29, 2014 11:37:02 AM UTC-5, Alex Scoble wrote:
> > >
> >
Wed, Apr 30, 2014 at 7:15 AM, jcbollinger wrote:
>
>
> On Tuesday, April 29, 2014 11:37:02 AM UTC-5, Alex Scoble wrote:
>>
>> Hi John,
>>
>> Thanks so much for your feedback. It's extremely useful for me at this
>> stage of my education in the Puppet DSL.
undef' here.
4. Yep, I'll have to look at the parameters and clean this up as well.
Thanks much!
Alex
On Tuesday, April 29, 2014 7:10:36 AM UTC-7, jcbollinger wrote:
>
>
>
> On Monday, April 28, 2014 2:34:43 PM UTC-5, Alex Scoble wrote:
>>
>> Hi All,
>>
>> I
reate_resources() function?
Thanks,
Alex
On Monday, April 28, 2014 1:19:50 PM UTC-7, Alex Scoble wrote:
>
> I think I get it now.
>
> The types module is actually a wrapper for tying hiera hash data to the
> three built in types, but this pattern could also be used with a defined
> t
I think I get it now.
The types module is actually a wrapper for tying hiera hash data to the
three built in types, but this pattern could also be used with a defined
type perhaps?
Thanks,
Alex
On Monday, April 28, 2014 1:05:55 PM UTC-7, Alex Scoble wrote:
>
> Hi Garrett,
>
> Th
Hi Garrett,
Thanks for the response. The module you posted does indeed help as it shows
how to deal with hashes of hiera data without using the create_resources()
function.
Thanks,
Alex
>
> Hi,
>
> The create_resources() function allows you to have a data driven design.
> This gives you th
M UTC-7, Alex Scoble wrote:
>
> Hi All,
>
> I'm working on a module that builds KVM/libvirt hosts and populates them
> with predefined VMs.
>
> So far I have the module to where it can create any number of virtual
> nets, storage pools and volumes using virsh, but
Hi All,
I'm working on a module that builds KVM/libvirt hosts and populates them
with predefined VMs.
So far I have the module to where it can create any number of virtual nets,
storage pools and volumes using virsh, but it isn't pretty.
I've read on various threads here that create_resources
rafied parameters to fill in the gaps, but that seems a bit ugly and
primitive.
On Tuesday, April 22, 2014 10:43:35 AM UTC-7, Alex Scoble wrote:
>
> Hi All,
>
> Is anyone here using Puppet to automate management (creation, spinup and
> provisioning) of VMs on KVM/libvirt hosts?
>
Hi All,
Is anyone here using Puppet to automate management (creation, spinup and
provisioning) of VMs on KVM/libvirt hosts?
If so, how are you doing it? Are you using a particular module on GitHub?
Seems like there was a bunch of development done in this space in 2011 and
then it just stopped.
It's kind of annoying that there's a TDD for Chef book from O'Reilly, but
not one for Puppet. There's definitely a need for it, in my opinion.
On Monday, March 24, 2014 10:24:35 AM UTC-7, Alex Scoble wrote:
>
> Hi All,
>
> Was wondering if anyone knew of any good
This seems to be the sort of thing that I'm looking
for http://vstone.eu/puppet-modules-in-jenkins/ a good nuts and bolts walk
through on using Jenkins to do Puppet syntax and lint checking.
On Monday, March 24, 2014 10:24:35 AM UTC-7, Alex Scoble wrote:
>
> Hi All,
>
> Was wo
Hi All,
Was wondering if anyone knew of any good books or resources for learning
Test Driven Development of Puppet including puppet-rspec, beaker and
Jenkins. Yes, I know that beaker is more for acceptance testing than unit
testing, but I still see it as part of the testing tool chain that Pupp
Hi All,
We are currently transitioning from using the Puppet Enterprise (PE) ENC to
using hiera. Howevver, one piece of functionality that we lack with hiera
is the ability to group systems together based on function. We can only
currently group the systems based on available facts and are curr
Nevermind. I think the problem was that I was splitting it up into two
members of an array with a comma as opposed to just keeping it one long
string. So yeah, this fix worked.
Thanks,
Alex
On Wednesday, November 20, 2013 12:24:03 PM UTC-8, Alex Scoble wrote:
>
> When I change it to an
When I change it to an array it injects a comma into the range and DHCP
pukes.
On Thursday, January 24, 2013 3:20:46 AM UTC-8, Peter wrote:
>
> Not sure if it is the reason but making the change seems to fix it. Just
> incase anyone else comes across this in the future.
>
> The init.pp file cal
manage the permissions (chown, chmod) with rsync as well.
It would be nicer to be able to do the rsync whenever a git push is done,
but the mechanics of that are more complicated and a project for a later
date.
Any thoughts?
--Alex
On Tuesday, October 29, 2013 12:40:11 PM UTC-7, Alex Scoble
Hi All,
I'm trying to use gitolite to control who has access to our puppet code in
git and running into problems with the Puppet Labs semi-official
post-receive hook
https://github.com/adrienthebo/puppet-git-hooks/blob/master/post-receive/dynamic-environments
I have gitolite working to where I
By the way, I forgot to give thanks to the Puppet SE Team and to dhogland
for their work on similar Splunk modules. I definitely integrated a lot of
the work that they did into my module.
Thanks,
Alex
On Tuesday, October 15, 2013 2:21:45 PM UTC-7, Alex Scoble wrote:
>
> Hi All,
>
&g
ttp://en.wikipedia.org/wiki/YAML#Newlines_preserved
>
> On Tuesday, October 15, 2013 7:38:50 PM UTC-7, Alex Scoble wrote:
>>
>> Dumb question...have you tried loading the data into a hiera array since
>> that's apparently what it's looking for?
>>
&
that in the examples.
Thanks,
Alex
On Tuesday, October 15, 2013 3:43:00 PM UTC-7, David Patterson wrote:
>
> Thanks for the reply, Alex! I'm using puppet-3.3 and the nested directory
> works fine...at least for more simple modules, heh!
>
> David
>
> On Tuesday, Octobe
more simple modules, heh!
>
> David
>
> On Tuesday, October 15, 2013 2:47:34 PM UTC-7, Alex Scoble wrote:
>>
>> I personally couldn't get hiera to work with nested directories in the
>> hiera.yaml.
>>
>> In my case the hierarchy would look li
I couldn't get hiera integrated with PE 3.0.1 to work with nested
hierarchies, so this is what my hierarchy looks like:
:hierarchy:
- defaults
- "%{clientcert}"
- "%{domain}"
- "%{osfamily}"
- "%{environment}"
- global
Regards,
Alex
On Tuesday, March 19, 2013 2:30:16 PM UTC-7, Larr
I personally couldn't get hiera to work with nested directories in the
hiera.yaml.
In my case the hierarchy would look like:
:hierarchy:
- defaults
- "%{::clientcert}"
- "%{::server_role}"
- "%{::app_name}"
- "%{::datacenter}"
- global
You might try it flattened like that an
Hi All,
I've been working on yet another Puppet module to deploy and manage Splunk.
Yep, I know that there are already many out there, but none do what I need
and also work the way we work and also have control of the various conf
files built in.
It's still a work in progress and isn't fully d
35 matches
Mail list logo
