On Fri, Nov 14, 2008 at 9:13 AM, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > Hi , > > just starting off with Puppet on Macs. initially we are planning for a > small group of machines. If successfull we plan to span it to entire > environment in a phased manner. > > I have a couple of newbie questions. > > Do i have to use custom script to create and maintain user/group > accounts as far as i have read i can manage passwords ?
(ditto Paul's comment about reading the docs a bit more as some of this may not make sense until you do) The Mac user provider as of the current stable build supports specifying passwords in the actual puppet manifests, unlike all other local directoryservice providers. Most people don't want this. It exposes your passwords in all sorts of places that you probably don't want. A patch has just been submitted for this, and once it's fully committed, I'll be providing back-ports of other Puppet versions on my site that are marked as using either the clear text password provider, or the new version that just allows you to specify the password hash instead. Groups aren't changing. An alternative to managing users and groups via User and Group resources in Puppet if you're using OS X 10.5 is to use two File resources and an Exec resource. 1 File resource to define the user at /var/db/dslocal/nodes/Default/users/username.plist 1 File resource to define the password at /var/db/shadow/hash/useruuid 1 Exec resource to send a HUP signal to DirectoryServices. You set the Exec resource to be "refreshonly" so it only runs when triggered by another resource. You then notify the Exec resource in each of the 2 File resources above, so if you modify the user account or the password, you're telling DirectoryServices to refresh. Jeff McCune and I are actually working on our Puppet talk for Macworld 09 in the next week, so I'm particularly interested to hear what the major conceptual stumbling blocks were for getting started so that we make sure we're smoothing that path out. Puppet is quite different to most of the standard Mac config management tools, but it's far more powerful and flexible. > > Can i use puppet fileserver also as sourcedir for pushing packages ? > > Can anyone enumerate the advanatages/disadvantages between using > Templates and Classes for defining > Nodes ? > > > > Thanks > yogesh > > > > -- Nigel Kersten Systems Administrator Tech Lead - MacOps --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
