Problem is that if you don't have a way of limiting where sudo entries can
be made, someone can create a new module and grant themselves full sudo
rights there for a large number of systems. When in a large enterprise such
as ours, there are modules that are created and maintained by teams
Hi all,
We're currently on PE 3.8.4.
We need to be able to manage sudoers permissions with Puppet, but control
things so sudoers permissions can only be granted within a specific module.
So permissions could be included via 'include foo::bar' from anywhere, but
the actual sudoers permissions
You could use Puppet to manage WSUS though using stuff like
PoshWSUS https://poshwsus.codeplex.com/
On Wednesday, June 11, 2014 11:55:51 AM UTC-7, Brian Mathis wrote:
Why not use WSUS? This is what it's made for, it's already part of
Windows, and can be easily managed from the WSUS console.
I'm sorry, I misspoke, I should have said that for us Puppet (PE actually)
has been a moving target in a number of ways.
For instance, we started out heavily using the PE dashboard to define what
classes specific nodes would get and related variables, pretty quickly
realized that that wasn't
On Wednesday, May 7, 2014 10:04:23 AM UTC-7, Alex Scoble wrote:
I'm sorry, I misspoke, I should have said that for us Puppet (PE actually)
has been a moving target in a number of ways.
For instance, we started out heavily using the PE dashboard to define what
classes specific nodes would get
Hi All,
I got this fully working yesterday on CentOS 6.5 and uploaded it to github
today:
https://github.com/ITBlogger/puppet-kvm
It's very crude, doesn't have any parameter validation or testing and
requires hiera as written, but you may find it useful.
At some point it would be interesting
If you are trying to follow Puppet Labs recommended best practices, it's
definitely a moving target.
On Mon, May 5, 2014 at 5:37 AM, Felix Frank felix.fr...@alumni.tu-berlin.de
wrote:
On 04/30/2014 04:28 PM, Alex Scoble wrote:
I sometimes wonder how the moving target that is the Puppet DSL
On Wed, Apr 30, 2014 at 7:15 AM, jcbollinger john.bollin...@stjude.orgwrote:
On Tuesday, April 29, 2014 11:37:02 AM UTC-5, Alex Scoble wrote:
Hi John,
Thanks so much for your feedback. It's extremely useful for me at this
stage of my education in the Puppet DSL.
Here is the Puppet Users group
: Wednesday, April 30, 2014 3:15:03 PM
Subject: [Puppet Users] Re: Looking for a better way to use hiera hashes
than create_resources
On Tuesday, April 29, 2014 11:37:02 AM UTC-5, Alex Scoble wrote:
Hi John,
Thanks so much for your feedback. It's extremely useful for me
As far as I know, the only reason you would use params.pp is if you have
sane defaults you want to pass to variables. When you do, you use:
class test inherits test::params {
}
for your init.pp. You don't use an include statement as far as I know.
However, because you aren't defining sane
By the way, if you are using Puppet 3.0.0 or newer you shouldn't need the
hiera() function at all.
Just call out your variables like so:
class test (
$a,
$b,
) {
file { 'testfile' :
path = /tmp/testfile,
content = template(test/testfile.erb),
}
}
In your hiera yaml it would
Heh, John,
I said shouldn't need, not shouldn't use.
Thanks,
Alex
On Wed, Apr 30, 2014 at 3:12 PM, jcbollinger john.bollin...@stjude.orgwrote:
On Wednesday, April 30, 2014 3:02:14 PM UTC-5, Alex Scoble wrote:
By the way, if you are using Puppet 3.0.0 or newer you shouldn't need
at the parameters and clean this up as well.
Thanks much!
Alex
On Tuesday, April 29, 2014 7:10:36 AM UTC-7, jcbollinger wrote:
On Monday, April 28, 2014 2:34:43 PM UTC-5, Alex Scoble wrote:
Hi All,
I'm working on a module that builds KVM/libvirt hosts and populates them
with predefined VMs.
So far I
Hi All,
I'm working on a module that builds KVM/libvirt hosts and populates them
with predefined VMs.
So far I have the module to where it can create any number of virtual nets,
storage pools and volumes using virsh, but it isn't pretty.
I've read on various threads here that create_resources
-7, Alex Scoble wrote:
Hi All,
I'm working on a module that builds KVM/libvirt hosts and populates them
with predefined VMs.
So far I have the module to where it can create any number of virtual
nets, storage pools and volumes using virsh, but it isn't pretty.
I've read on various
Hi Garrett,
Thanks for the response. The module you posted does indeed help as it shows
how to deal with hashes of hiera data without using the create_resources()
function.
Thanks,
Alex
Hi,
The create_resources() function allows you to have a data driven design.
This gives you the
I think I get it now.
The types module is actually a wrapper for tying hiera hash data to the
three built in types, but this pattern could also be used with a defined
type perhaps?
Thanks,
Alex
On Monday, April 28, 2014 1:05:55 PM UTC-7, Alex Scoble wrote:
Hi Garrett,
Thanks
() function?
Thanks,
Alex
On Monday, April 28, 2014 1:19:50 PM UTC-7, Alex Scoble wrote:
I think I get it now.
The types module is actually a wrapper for tying hiera hash data to the
three built in types, but this pattern could also be used with a defined
type perhaps?
Thanks,
Alex
On Monday
to fill in the gaps, but that seems a bit ugly and
primitive.
On Tuesday, April 22, 2014 10:43:35 AM UTC-7, Alex Scoble wrote:
Hi All,
Is anyone here using Puppet to automate management (creation, spinup and
provisioning) of VMs on KVM/libvirt hosts?
If so, how are you doing it? Are you using
Hi All,
Is anyone here using Puppet to automate management (creation, spinup and
provisioning) of VMs on KVM/libvirt hosts?
If so, how are you doing it? Are you using a particular module on GitHub?
Seems like there was a bunch of development done in this space in 2011 and
then it just
This seems to be the sort of thing that I'm looking
for http://vstone.eu/puppet-modules-in-jenkins/ a good nuts and bolts walk
through on using Jenkins to do Puppet syntax and lint checking.
On Monday, March 24, 2014 10:24:35 AM UTC-7, Alex Scoble wrote:
Hi All,
Was wondering if anyone knew
It's kind of annoying that there's a TDD for Chef book from O'Reilly, but
not one for Puppet. There's definitely a need for it, in my opinion.
On Monday, March 24, 2014 10:24:35 AM UTC-7, Alex Scoble wrote:
Hi All,
Was wondering if anyone knew of any good books or resources for learning
Hi All,
Was wondering if anyone knew of any good books or resources for learning
Test Driven Development of Puppet including puppet-rspec, beaker and
Jenkins. Yes, I know that beaker is more for acceptance testing than unit
testing, but I still see it as part of the testing tool chain that
Hi All,
We are currently transitioning from using the Puppet Enterprise (PE) ENC to
using hiera. Howevver, one piece of functionality that we lack with hiera
is the ability to group systems together based on function. We can only
currently group the systems based on available facts and are
When I change it to an array it injects a comma into the range and DHCP
pukes.
On Thursday, January 24, 2013 3:20:46 AM UTC-8, Peter wrote:
Not sure if it is the reason but making the change seems to fix it. Just
incase anyone else comes across this in the future.
The init.pp file calling
Nevermind. I think the problem was that I was splitting it up into two
members of an array with a comma as opposed to just keeping it one long
string. So yeah, this fix worked.
Thanks,
Alex
On Wednesday, November 20, 2013 12:24:03 PM UTC-8, Alex Scoble wrote:
When I change it to an array
Hi All,
I'm trying to use gitolite to control who has access to our puppet code in
git and running into problems with the Puppet Labs semi-official
post-receive hook
https://github.com/adrienthebo/puppet-git-hooks/blob/master/post-receive/dynamic-environments
I have gitolite working to where
and
manage the permissions (chown, chmod) with rsync as well.
It would be nicer to be able to do the rsync whenever a git push is done,
but the mechanics of that are more complicated and a project for a later
date.
Any thoughts?
--Alex
On Tuesday, October 29, 2013 12:40:11 PM UTC-7, Alex Scoble
By the way, I forgot to give thanks to the Puppet SE Team and to dhogland
for their work on similar Splunk modules. I definitely integrated a lot of
the work that they did into my module.
Thanks,
Alex
On Tuesday, October 15, 2013 2:21:45 PM UTC-7, Alex Scoble wrote:
Hi All,
I've been
Hi All,
I've been working on yet another Puppet module to deploy and manage Splunk.
Yep, I know that there are already many out there, but none do what I need
and also work the way we work and also have control of the various conf
files built in.
It's still a work in progress and isn't fully
I personally couldn't get hiera to work with nested directories in the
hiera.yaml.
In my case the hierarchy would look like:
:hierarchy:
- defaults
- %{::clientcert}
- %{::server_role}
- %{::app_name}
- %{::datacenter}
- global
You might try it flattened like that and see
I couldn't get hiera integrated with PE 3.0.1 to work with nested
hierarchies, so this is what my hierarchy looks like:
:hierarchy:
- defaults
- %{clientcert}
- %{domain}
- %{osfamily}
- %{environment}
- global
Regards,
Alex
On Tuesday, March 19, 2013 2:30:16 PM UTC-7, Larry Fast
!
David
On Tuesday, October 15, 2013 2:47:34 PM UTC-7, Alex Scoble wrote:
I personally couldn't get hiera to work with nested directories in the
hiera.yaml.
In my case the hierarchy would look like:
:hierarchy:
- defaults
- %{::clientcert}
- %{::server_role}
- %{::app_name
.
Thanks,
Alex
On Tuesday, October 15, 2013 3:43:00 PM UTC-7, David Patterson wrote:
Thanks for the reply, Alex! I'm using puppet-3.3 and the nested directory
works fine...at least for more simple modules, heh!
David
On Tuesday, October 15, 2013 2:47:34 PM UTC-7, Alex Scoble wrote:
I
://en.wikipedia.org/wiki/YAML#Newlines_preserved
On Tuesday, October 15, 2013 7:38:50 PM UTC-7, Alex Scoble wrote:
Dumb question...have you tried loading the data into a hiera array since
that's apparently what it's looking for?
Another dumb question...what's the pipe (|) for in your yaml data
35 matches
Mail list logo
