yes i kind of do that too. Eg if i have different classes that permit
to setup and install each a certain java, and i want to make sure only
one of them can be instanciated with Puppet on a server at a time, i
make sure one of my ressources in each class has the name file { java:
name=>'real name',
On 12/12/11 19:33, Daniel Pittman wrote:
So, I want to be clear up front: this is the absolute opposite of a
promise. I want to understand what people expect here, and there is
*nothing* resembling a hint that we are changing the model of Puppet.
So, Jo, if we wanted to solve this, would it wo
Hi,
On 12/07/2011 03:12 AM, Brian Lam wrote:
> Guys,
>
> I have spent a couple of hrs debugging an issue w/ my sandbox setup so
> that I can test my code before committing and pushing out my code in
> production. I ran it against my own environment=blam and got the
> following errors that I can'
On 12/08/2011 04:44 PM, jcbollinger wrote:
> I would suggest, however, that
> you consider filing issue tickets against the documentation for some
> or all of your complaints. The sqeaky wheel gets the grease, and
> formal issue tickets squeak far louder than complaints in this forum.
+1
Better
Hi,
On 12/09/2011 07:58 AM, huangming...@gmail.com wrote:
> hi,all
> this is a tips, when you run puppet in a big data center. you
> need run more than one puppet master. this is a trouble. and if the
Yes, scaling is not trivial.
> puppet master hacked by hacker. all client will be in d
On 12/13/2011 10:33 AM, Alexandre wrote:
> This way, i'll have an error of
> duplicate definition at runtime if someone try to include more than 1
> class
...which can be a little counter-intuitive to the uninitiated, I presume.
If you want to be a little more abusive in terms of puppet style, bu
I am dealing with SSL certificates for secure rsyslog that need to be created
on each machine and then collected onto the logging server.
Getting a file from puppetmaster to client is trivial, but how do I reverse the
process ?
“Sometimes I think the surest sign that intelligent life exists els
On Dec 12, 5:08 pm, jcbollinger wrote:
> [...] the right way is to use a class rather than a
> definition. By itself, however, that's not enough to solve a
> duplicate resource problem.
Clarification: using the parameterized class declaration syntax will
more than once for the same class will
On Dec 12, 2011, at 5:42 PM, Wolf Noble wrote:
> Hi Peter,
>
> we used a different method here for linux hosts.
> We put the groups we want to grant access to in /etc/security/access.conf ;
> ala:
>
> [root@---]# egrep -v ^# /etc/security/access.conf
>
> - : ALL EXCEPT root admin pci_sysadmin
On Tue, Dec 13, 2011 at 09:58:06AM -0700, Craig White wrote:
>
> On Dec 12, 2011, at 5:42 PM, Wolf Noble wrote:
>
> > Hi Peter,
> >
> > we used a different method here for linux hosts.
> > We put the groups we want to grant access to in /etc/security/access.conf ;
> > ala:
We use puppet to tem
The output of this command with root priveleges
on server are 6 blank strings like this:
[arifulov@head02 ~]$ sudo ruby -e "require 'puppet/type/user';
Puppet::Type::User.provider_hash.each_pair do |k,v| puts
\"#{k}=#{v.suitable?.to_s}\" end"
[sudo] password for arifulov:
[arifulov@head02 ~]$
Searching old archive I find this topic:
http://groups.google.com/group/puppet-users/browse_thread/thread/187ee3897a26ae2a/32fea612e79dda80?hl=en&lnk=gst&q=puppet+case+statement+in+file+resource#32fea612e79dda80
I understand that "case statements must be outside of resource
statements" per that
Hi,
I have a hash variable defined on a node:
$vips = {
wha => {
'vip1.mycompany.net' => {
name => 'wha.mycompany.net',
vip => '10.4.229.132',
certificate
On Tue, Dec 13, 2011 at 12:07:46PM -0200, Wagner Sartori Junior wrote:
>Hi,
>I have a hash variable defined on a node:
>� � � � $vips = {
>� � � � � � � � wha => {
>� � � � � � � � � � � � '[1]vip1.mycompany.net' => {
>� � � � � � � � � � � � � � � � name => '[2]wha.mycompan
Hello,
If I'm not mistaken, you could use exported resources for this. e.g.:
node client {
@@file { ..., tag => "SSL_cert_whatever" }
}
node server {
File <<| tag == 'SSL_cert_whatever' |>>
On 11-12-13 08:11 AM, Dan White wrote:
> I am dealing with SSL certificates for secure rsyslog that
On Tue, Dec 13, 2011 at 05:11, Dan White wrote:
> I am dealing with SSL certificates for secure rsyslog that need to be created
> on each machine and then collected onto the logging server.
> Getting a file from puppetmaster to client is trivial, but how do I reverse
> the process ?
Use a cust
On Tue, Dec 13, 2011 at 04:29, Felix Frank
wrote:
> On 12/08/2011 04:44 PM, jcbollinger wrote:
>
>> I would suggest, however, that
>> you consider filing issue tickets against the documentation for some
>> or all of your complaints. The sqeaky wheel gets the grease, and
>> formal issue tickets sq
Hi,
I tried to adapt the Apache+Passenger donc on the PuppetLabs wiki for
use with nginx+passenger, but something is not working maybe i do not
set the http headers correctly. Did someone made it work ? Can you
share it ? Or is it already posted on the wiki (i did not find so
far) ?
Please don't a
On 11-12-13 07:36 AM, Felix Frank wrote:
> Puppet usually authenticates both master and agent, so there is no added
> security in throwing GPG at it.
> The catalogue isn't getting any more encrypted or signed than the
> regular puppet master does.
actually, the benefit could be that the GPG key, b
How about something like;
$hasfile = true
if $::hasfile {
$fileensure = 'present'
}
else {
$fileensure = 'absent'
}
file { "somefile" :
ensure => $::fileensure,
source => "puppet:///somefile",
owner => "root",
.
.
.
}
--
You received this
Op zondag 11 december 2011 19:01:14 UTC+1 schreef Nigel Kersten het
volgende:
>
> I've cc'd Dan and Kelsey, who have both been working on a Dashboard Puppet
> Face for command-line control. Although the rake tasks are totally useful,
> we'd like to be able to have all this functionality under
nginx bits...
server {
server_name puppet;
listen 8140 default ssl;
client_max_body_size 10M;
passenger_enabled on;
passenger_set_cgi_param HTTP_X_CLIENT_DN $ssl_client_s_dn;
passenger_set_cgi_param HTTP_X_CLIENT_VERIFY $ssl_client_verify;
root /opt/nginx/html/puppet-production/publi
I've read previous posts about iterating over arrays, hashes, etc.
I have a series of directories that need to be created (and
maintained, with appropriate permissions) that serve as NFS mount
points on a series of systems.Sometimes, when they are no longer
needed, they will be removed (anothe
Also, where is the decleration wich server the key is going declared?
On Dec 12, 10:55 am, Alexander Swen wrote:
> > Yes, if noone else does, I can sanitize an example from our environment,
> > but I'll have to be back in the office.
>
> This is how we do that: (learned from puppet btw)
>
> crea
Thanks for the suggestion.
A nice option, but requires too much (mainly a database server) to be added to
make it work.
I will save this idea for future consideration.
On Dec 13, 2011, at 2:36 PM, Gabriel Filion wrote:
> Hello,
>
> If I'm not mistaken, you could use exported resources for thi
Thanks for responding.
A nice idea.
I will have to research that a bit with the rsyslog folks.
On Dec 13, 2011, at 2:40 PM, Daniel Pittman wrote:
> On Tue, Dec 13, 2011 at 05:11, Dan White wrote:
>
>> I am dealing with SSL certificates for secure rsyslog that need to be
>> created on each ma
Does anyone know how puppetmasters use the ca_pub.pem?
I'm using a ca chain, and I want to have the least required ca related
files. I only see the parameter listed in the puppet.conf without any
discussion of purpose.
Thanks.
Jordan
--
You received this message because you are subscribed to
On 12/13/2011 02:40 PM, Daniel Pittman wrote:
On Tue, Dec 13, 2011 at 05:11, Dan White wrote:
I am dealing with SSL certificates for secure rsyslog that need to be created
on each machine and then collected onto the logging server.
Getting a file from puppetmaster to client is trivial, but ho
An interesting module, but I do not believe I can use it because we use
passphrases for our ssh keys.
The setup we use is that the individual user controls their private keys while
the public keys are collected and distributed to those machines they need to
access. I just added a file resource
I am wondering what would be a good way of managing users. I need to add user
to some host and ensure that they are absent on another box. so for instance,
I want Bob to be present on server A but absent on server B. as far as I know,
you can only have one defined object. so I could have Bob
Hi,
Are there still any known issues with puppet and ruby 1.9?
Or 1.8.7 is still the preferred version to use with puppet?
Thanks
Alex
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegro
31 matches
Mail list logo
