Re: [Puppet Users] Re: Systems Provisioning

2012-09-19 Thread Glenn Poston
We have one script that is called to bootstrap and provision new VMs. There's another one for destroying. These scripts are also responsible for logging into the puppet master (via ssh), polling for the cert to be created (puppet cert list) and then issuing the sign/clean commands. -- You re

Re: [Puppet Users] Re: Systems Provisioning

2012-09-18 Thread R.I.Pienaar
- Original Message - > From: "Douglas Garstang" > To: puppet-users@googlegroups.com > Sent: Monday, September 17, 2012 7:16:02 PM > Subject: Re: [Puppet Users] Re: Systems Provisioning > > I probably should have been clearer with my question. I was more &g

Re: [Puppet Users] Re: Systems Provisioning

2012-09-18 Thread Peter Bukowinski
On Sep 17, 2012, at 2:16 PM, Douglas Garstang wrote: > I probably should have been clearer with my question. I was more > interested in how people are managing certificates? Even if you use > autosign, you still need to clean certificates manually. > > Doug. Doug, We autosign certs for hosts in

Re: [Puppet Users] Re: Systems Provisioning

2012-09-18 Thread Luke Bigum
If you want the least amount of headache at the cost of security, here is a sanitised extract from my kickstarts: #LB: attempt to revoke and delete the certificate for this hostname, this should stop us having #to manually clean off every cert. curl -k -X PUT -H "Content-Type: text/pson" --data

Re: [Puppet Users] Re: Systems Provisioning

2012-09-18 Thread Douglas Garstang
I probably should have been clearer with my question. I was more interested in how people are managing certificates? Even if you use autosign, you still need to clean certificates manually. Doug. On Mon, Sep 17, 2012 at 6:25 AM, Keiran Sweet wrote: > Hi There, > I manage a relatively large RHEL

[Puppet Users] Re: Systems Provisioning

2012-09-17 Thread Glenn Poston
Similar setup here: pxe boot, etc. but we keep a pxe booted sparse base image available to clone. And use a script to to do the clone so that we can provision more quickly (saves us the pxe boot time). The script also interacts with puppet dashboard to set the machine role. We can provision

[Puppet Users] Re: Systems Provisioning

2012-09-17 Thread Keiran Sweet
Hi There, I manage a relatively large RHEL environment, we handle provisioning as follows: - PXE + Kickstart to bootstrap and install the base OS + Puppet client onto the platform, be it VMWare or bare metal - Kickstart post scripts put a basic puppet configuration file in place on the host, an

[Puppet Users] Re: Systems Provisioning

2012-09-16 Thread Dom
We're doing a simple combination of PXE boot, kickstart, and internal repos, which then hands off to puppet. We also use some rvc for vmware provisioning, which is mostly what happens in our environment. Not many people appear to be talking about razor