Dear all,
We are thinking about the possibility of using Puppet in an image-based
cluster. The compute nodes would boot and load the whole image to a
ramdisk, where r/w access is granted afterwards.
Our idea is to have a sample compute node running puppet where to create
the image from, and perio
You can use autosign for signing certificates.
Regards,
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to puppet-users+unsubscr...@googlegroups.com.
To view this
On Wednesday, January 8, 2014 11:15:24 AM UTC+1, Felix.Frank wrote:
> can you reproduce this using puppet agent --one-time?
>
"puppet agent --onetime" always fails, just like "puppet agent --test".
> If not, you may have to activate debug logging in your background agent.
I added "PUPPET_
Hi,
I'm not sure whether debug logging ends up in /var/log/messages. There
may be syslog configuration issues.
Here's an idea:
puppet agent --no-daemonize --debug --verbose --interval=120 --logdest
stdout
That should make your debugging agent try to run once and repeat each 2
minutes, dumping t
Maybe look into running masterless to avoid problems with certs. Just run
puppet apply on the new server.
On 9 Jan 2014 09:42, "Pablo Fernandez" wrote:
> Dear all,
>
> We are thinking about the possibility of using Puppet in an image-based
> cluster. The compute nodes would boot and load the whol
Hi List,
I am experimenting with different hiera hierarchy's through the hiera
command line. I am passing in different facts to simulate different nodes.
In the beginning I would manually pass them in as parameters on the
command line after a while when I wanted to pass in more and more facts
Hi all,
i would like to replace pem certificate to many servers.
Before to replace it i would like to verify some things like: certificate
expired date, right CN, right private key
How can i do it with puppet?
Thanks
Regards
Paolo
--
You received this message because you are subscribed to th
Hello all,
I am configuring a openstack swift cluster using puppet. For this I use
exported resources, and here I run in to a problem...
I'm getting an error like this:
Error: Could not retrieve catalog from remote server: Error 400 on SERVER:
Another local or imported resource exists with th
Hi all,
i would like to replace pem certificate to agent servers.
Before to replace it i would do some checks like : certificate expired
date, right CN, right private key.
Can anyone help me?
Regards
Paolo
--
You received this message because you are subscribed to the Google Groups
"Puppet User
Thanks for your suggestions,
Running masterless is a bit too exotic, since we would like to use all
those nice features that make a Puppet installation complete: specially
hiera searches and PuppetDB. Modules, too, should be compatible with
other clusters, so no big deviations can occur.
Enabling
Hi All,
So here's my use case:
I've got an application with multiple environments, say live, qa and dev,
and each environment has multiple servers. The actual application requires
an NFS mount mounted on each of these servers. Each environment has it's
own NFS drive.
I also have a management s
Sounds like the right assumption ... did you try "puppet node clean" as
well?
On Thursday, January 9, 2014 9:59:17 AM UTC, Krist van Besien wrote:
>
> Hello all,
>
> I am configuring a openstack swift cluster using puppet. For this I use
> exported resources, and here I run in to a problem...
>
On Thursday, January 9, 2014 5:11:06 AM UTC-6, Felix.Frank wrote:
>
> Hi,
>
> I'm not sure whether debug logging ends up in /var/log/messages. There
> may be syslog configuration issues.
>
> Here's an idea:
>
> puppet agent --no-daemonize --debug --verbose --interval=120 --logdest
> stdout
(inline)
On Thu, Jan 09, 2014 at 06:49:35AM -0800, Stephan wrote:
>Hi All,
>
>So here's my use case:
>
>I've got an application with multiple environments, say live, qa and dev,
>and each environment has multiple servers. The actual application requires
>an NFS mount mounted
On Wednesday, January 8, 2014 12:52:16 PM UTC-6, Jose Luis Ledesma wrote:
>
> Puppet loads facts first of all, so custom facts deployed are not there
> until next run.
>
>
>
No, that's incorrect. Normally, Puppet synchronizes plugins first of all,
including custom facts set up as native plugin
Autosign will be not enough, since if server has already signed - it will
show cert mismatch.
you can trigger cert clean every time you reimage server.
On 9 Jan 2014 12:40, "Pablo Fernandez" wrote:
> Thanks for your suggestions,
>
> Running masterless is a bit too exotic, since we would like t
On Thursday, January 9, 2014 6:40:42 AM UTC-6, pablo.f...@cscs.ch wrote:
>
> Thanks for your suggestions,
>
> Running masterless is a bit too exotic, since we would like to use all
> those nice features that make a Puppet installation complete: specially
> hiera searches and PuppetDB. Modules,
Do you want to replace some random certificates somewhere on the disk, or
do you want to replace those used for puppet communication? If the latter
have a look here:
https://ask.puppetlabs.com/question/2097/how-to-migrate-ca-certificates-to-new-master/
This is for a puppet master migration, but
hi,
we'd like to install puppet and use it on our system. i installed
puppet-server on my puppet machine and puppet on client machine. machines
are oracle linux 6.
on some videos there are "puppetd" "puppetca" commands but i havent seen
that yet. why ? and what will i do ?
--
You received
Hoping to get Puppet to work to kick off usage of Simian/Munki, which I am
also in the process of learning. I want to use Puppet to distribute the
Simian certificates for the computers.
When installing the Enterprise Puppet on a Mac server, I get hung up
running the installer. I tried suppling
I understand your point. I guess the SSL layer will render the request
as illegitimate, but even if it doesn't, it may be playing with fire :)
Thanks all for your thoughts, let me then present this as a generic
question: did anybody try puppet on image-based systems? It would be
wonderful to get s
On Thursday, January 9, 2014 2:59:15 PM UTC, Christopher Wood wrote:
>
>
> Could you maybe use "mgmtnfs-${environment}-${fqdn}" (or add more
> unique-ish suffix strings) in the resource title? If I recall correctly
> giving each resource a unique title will ensure that each
> server+environmen
2014/1/9 jcbollinger :
>
>
> On Thursday, January 9, 2014 6:40:42 AM UTC-6, pablo.f...@cscs.ch wrote:
>>
>> Thanks for your suggestions,
>>
>> Running masterless is a bit too exotic, since we would like to use all
>> those nice features that make a Puppet installation complete: specially
>> hiera s
On Jan 9, 2014, at 10:10 AM, J Neitzey wrote:
> Hoping to get Puppet to work to kick off usage of Simian/Munki, which I am
> also in the process of learning. I want to use Puppet to distribute the
> Simian certificates for the computers.
>
> When installing the Enterprise Puppet on a Mac serv
On Thursday, January 9, 2014 3:04:34 PM UTC, mehmet hasdemir wrote:
>
> hi,
> we'd like to install puppet and use it on our system. i installed
> puppet-server on my puppet machine and puppet on client machine. machines
> are oracle linux 6.
> on some videos there are "puppetd" "puppetca" co
On Jan 9, 2014, at 10:04 AM, mehmet hasdemir wrote:
> hi,
> we'd like to install puppet and use it on our system. i installed
> puppet-server on my puppet machine and puppet on client machine. machines are
> oracle linux 6.
> on some videos there are "puppetd" "puppetca" commands but i hav
Hi Stephan,
thanks for the quick answer.
I try to explain better.
For example:
I have a pem certificate on puppet master path /puppet/files/xxx.pem this
certificate i would copy in many agent puppet under /etc/. Before to copy
it i would to check if certificate is not expired.
How can i do?
Th
On Thu, Jan 09, 2014 at 07:12:31AM -0800, Stephan wrote:
>On Thursday, January 9, 2014 2:59:15 PM UTC, Christopher Wood wrote:
>
> Could you maybe use "mgmtnfs-${environment}-${fqdn}" (or add more
> unique-ish suffix strings) in the resource title? If I recall correctly
> giving
I downloaded Puppet 2.7.x from http://puppetlabs.com/misc/download-options.
This is just a package installer.
I don't see Mac Enterprise to download any where. Is that the correct
installation?
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
Nevermind, I see the download-pe.html site.
On Thursday, January 9, 2014 10:30:59 AM UTC-5, J Neitzey wrote:
>
> I downloaded Puppet 2.7.x from http://puppetlabs.com/misc/download-options
> .
>
> This is just a package installer.
>
> I don't see Mac Enterprise to download any where. Is that the co
On Jan 9, 2014, at 10:30 AM, J Neitzey wrote:
> I downloaded Puppet 2.7.x from http://puppetlabs.com/misc/download-options.
>
> This is just a package installer.
>
> I don't see Mac Enterprise to download any where. Is that the correct
> installation?
Yes, either the 2.7.x or the 3.x versio
I installed the 2.7.x version package. Am I supposed to be able to go to an
internal server website now and see the console?
I'm guessing now that the video webinar is not a Mac.
http://puppetlabs.com/webinars/special-topic-using-puppet-mac-management
--
You received this message because you a
If this is only on the puppet master then I would do that outside puppet,
maybe with a weekly cronjob, which moves or deletes expired certificates.
On linux with GNU date put this into a for loop going through all certs:
now=$(date +%s)
cert=$(date --date="$(openssl x509 -enddate -noout -in
ww
On Jan 9, 2014, at 10:45 AM, J Neitzey wrote:
> I installed the 2.7.x version package. Am I supposed to be able to go to an
> internal server website now and see the console?
>
> I'm guessing now that the video webinar is not a Mac.
> http://puppetlabs.com/webinars/special-topic-using-puppet-
If this is only on the puppet master then I would do that outside puppet,
maybe with a weekly cronjob, which moves or deletes expired certificates.
On linux with GNU date put this into a for loop going through all certs:
now=$(date +%s)
cert=$(date --date="$(openssl x509 -enddate -noout -in you
> Possibly I'm getting closer?
>
That might be an idea ... I've got it on my task list for a while to look
into hiera. This might be the solution for this and several other issues.
Thanks a lot for the hint!
--
You received this message because you are subscribed to the Google Groups
"Pup
Hi,
Could it be something stupid like
---
fqdn: puppet.koewacht.net
in your facts.yaml ?
I generated my facts.yaml from facter -y
Grts
Jo
On 01/09/2014 12:29 PM, Peter wrote:
Hi List,
I am experimenting with different hiera hierarchy's through the hiera
command line. I am passing in dif
The facts should go into :
/etc/puppetlabs/puppets/module/hello/lib/facter/
if you do a puppet agent -t, it will deployed in the right place by puppet.
you can also do a 'puppet plugin download'
hope this helps
On 01/08/2014 10:52 PM, Shark Laser wrote:
Platform: I've downloaded and inst
Reading the git page this is just way over my head. I'm going to have to
pass on all this I guess. We are a very small IT team and
Simian/Munki/Puppet just doesn't seem like the way to go for us.
Thanks for the assistance. Maybe I'll come back to it another time.
On Thursday, January 9, 2014 10
Thanks, done: https://tickets.puppetlabs.com/browse/GEP-22
On Tuesday, December 17, 2013 7:13:15 PM UTC-5, Henrik Lindberg wrote:
>
> On 2013-17-12 17:23, Igor Berger wrote:
> > Hello,
> >
> > I'm using the following expression to format a list:
> >
> > $valid_environments = ['env1', 'env2',
>
> Hi All,
>
> So here's my use case:
>
> I've got an application with multiple environments, say live, qa and dev,
> and each environment has multiple servers. The actual application requires
> an NFS mount mounted on each of these servers. Each environment has it's
> own NFS drive.
> I also
not entirely image-based, when new server was booted for the first time:
1. it made http call to puppetmaster with it's hostname to do puppet cert
clean
2. do puppet run
3. made HTTP call to do puppet cert sign
It was kind of autosign + in case of CERT already existed it was removed
and re-gen
On Thursday, January 9, 2014 3:59:17 AM UTC-6, Krist van Besien wrote:
>
> Hello all,
>
> I am configuring a openstack swift cluster using puppet. For this I use
> exported resources, and here I run in to a problem...
>
> I'm getting an error like this:
>
>
> Error: Could not retrieve catalog fro
machines any of those are mounted. Nevertheless, the key is probably for the
Mount resources to be exported by the nodes serving the shares (which does not
itself cause them to have the Mounts in their own catalogs).
That's principally a great idea and would solve my problem, the only probl
Hi everyone,
We have a number of servers that we would like to manage remotely - mainly
to set the servers up with relevant software/files when they are first set
up. Additionally, we would like to make changes after the initial set up.
For now, we would like to concentrate only on new servers
Thank you Andrew and Johan.
Andrew's suggestion made the fact work with Facter when run alone (outside
of Puppet) such as "facter --debug" -- the value of my new hello fact
shows up in the output now
Johan's suggestion got it working when I run Puppet from the commandline.
If I do "puppet a
In regard to: Re: [Puppet Users] error testing puppet 3.x upgrade: You need...:
Any chance you have a symlink to
/usr/lib/ruby/site_ruby/1.8/hiera/backend/ (or something similar) floating
around in your /var/lib/puppet? This was a common way to get Hiera to work in
Puppet 2.7 before the neces
On 01/09/2014 10:12 AM, Pablo Fernandez wrote:
I understand your point. I guess the SSL layer will render the request
as illegitimate, but even if it doesn't, it may be playing with fire :)
No, actually it doesn't verify certname against fqdn or any such, so
technically you could bake in a s
On Thursday, January 9, 2014 9:49:35 AM UTC-5, Stephan wrote:
>
> Hi All,
>
> So here's my use case:
>
> I've got an application with multiple environments, say live, qa and dev,
> and each environment has multiple servers. The actual application requires
> an NFS mount mounted on each of these
Hi guys.
Wondering if there was a reason to change the location for the config.ru
between the puppet 3.3.x and 3.4.x ?
3.3.x: /usr/share/puppet/ext/rack/files/config.ru
3.4.x: /usr/share/puppet/ext/rack/config.ru
It just broke my auto setup of puppetmaster since I run a exec to copy the
file
On Thursday, January 9, 2014 7:40:42 AM UTC-5, pablo.f...@cscs.ch wrote:
>
> Thanks for your suggestions,
>
> Running masterless is a bit too exotic, since we would like to use all
> those nice features that make a Puppet installation complete: specially
> hiera searches and PuppetDB. Modules,
There's been an idea floating in my mind for quite a while now about using
a job queue for compiling puppet catalogs. I just mentioned the idea on IRC
and a few people really liked the idea, so I thought I'd bring it up here
and get other thoughts on it.
The idea is that instead of puppet maste
Hi,
On the master,
puppet cert print
Look for the lines :
Validity
Not Before: May 10 10:23:49 2013 GMT
Not After : May 10 10:23:49 2018 GMT
On 01/09/2014 04:57 PM, Stephan wrote:
If this is only on the puppet master then I would do that outside
puppet, maybe with a
On Thursday, January 9, 2014 6:20:08 PM UTC+1, jcbollinger wrote:
>
>
>
>
> The error message says that the problem is two distinct declarations of a
> resource "Swift::Ringsync[account]". The most likely cause is that you are
> both collecting that resource and declaring it locally for the sa
This book : http://www.packtpub.com/puppet-3-beginners-guide/book is
describing a masterless setup with git. As all books about puppet, the
setup is linux based.
I dontt' have any experience with windows.
Grts
Jo
On 01/09/2014 06:54 PM, pskovshu...@gmail.com wrote:
Hi everyone,
We have
Maybe you could try something like this ?
https://gist.github.com/ahpook/1182243
On 01/09/2014 10:42 AM, Pablo Fernandez wrote:
Dear all,
We are thinking about the possibility of using Puppet in an image-based
cluster. The compute nodes would boot and load the whole image to a
ramdisk, where r
56 matches
Mail list logo
