Re: [Puppet Users] hiera, template and array

Silly question: Why not use https://forge.puppet.com/modules/puppetlabs/ntp ? ___ Dan White : d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to

Re: [Puppet Users] Puppet for RHEL 9 - when will it be available?

Do the el8 packages work for CentOS 8 Stream ? —- "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Calvin & Hobbes) > On Dec 6, 2021, at 8:05 PM, Yasmin Rajabi wr

Re: [Puppet Users] CustomFacts: Can we pass the credentials in custom facts in secure way?

Have you considered “orapwd” ? https://docs.oracle.com/database/121/ADMIN/dba.htm#ADMIN12478 ___ Dan White : d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has

Re: [Puppet Users] Bad security pratices in manifests

As one needs to be a member of IEEE to read the paper, it is tough to provide feedback. —- "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Calvin & Hobbes) > On

Re: [Puppet Users] Facter 4.0.19 is now available

Those look like beagle pups. Yours ? Super cute. I love all animals, especially if they are well behaved, but I am a Cat Person. ___ Dan White : d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in

Re: [Puppet Users] Beaker - what’s your perspective?

Well put, Trevor. I have never used it because I have found it impossible to set up from scratch. "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Calvin & Hobbes) > On Apr 20, 2020, at 10:46 A

Re: [Puppet Users] Update SSH Config File With Different Values

I have had good luck with this Forge module. https://forge.puppet.com/saz/ssh Try it out and see if it meets your needs. And, absolutely use Hiera. Just set up a hierarchy that includes a node level, and your node-specific settings are handled. "Sometimes I think the surest sign that intell

Re: [Puppet Users] PE 2019.2 with Puppet Agent 5.x (CA issue?)

Use 2018.1.11 (LTS) It clearly says that pre-6 agents won’t play with a 6 server. —- "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Calvin & Hobbes) > On Nov 16

[Puppet Users] [Glitch with a Workaround] From behind a proxy, "puppet-code deploy" cannot pull in any Forge modules

pped puppet resource service pe-puppetserver ensure=running Then re-try the "puppet-code deploy" And it worked ! So, I am sharing it with the Puppet Community Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligen

Re: [Puppet Users] Puppetforge Selinux Module Not Working

That example is found here: https://forge.puppet.com/puppet/selinux#usage I think you need puppet-selinux —- "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Cal

Re: [Puppet Users] LDAP ? User type provider documentation ? Hiera Back End ?

I believe I am going to abandon user resources with an ldap provider, because I cannot get it to even attempt a connection. I tried to create a user on the puppet server itself using "puppet apply" The output of the run complains that    Provider ldap is not functional on this host and    Could n

Re: [Puppet Users] LDAP ? User type provider documentation ? Hiera Back End ?

On August 14, 2019 at 9:01 AM, jcbollinger wrote: Why would you not want to write to the data store backing your User resources?  If you cannot write, then you cannot manage resources -- neither create new ones nor modify existing ones nor remove unwanted ones.  These things are what User reso

Re: [Puppet Users] LDAP ? User type provider documentation ? Hiera Back End ?

On August 14, 2019 at 5:15 AM, Martin Alfke wrote: Hi Dan, On 14. Aug 2019, at 04:12, 'Dan White' via Puppet Users wrote: On Aug 13, 2019, at 9:30 PM, Garrett Honeycutt wrote: On 8/13/19 6:10 PM, 'Dan White' via Puppet Users wrote: On Aug 13, 2019, at 9:04 PM, &#

Re: [Puppet Users] LDAP ? User type provider documentation ? Hiera Back End ?

> On Aug 13, 2019, at 9:30 PM, Garrett Honeycutt > wrote: > >> On 8/13/19 6:10 PM, 'Dan White' via Puppet Users wrote: >> On Aug 13, 2019, at 9:04 PM, 'Dan White' via Puppet Users >> mailto:puppet-users@googlegroups.com>> >> wrote: >

Re: [Puppet Users] LDAP ? User type provider documentation ? Hiera Back End ?

> On Aug 13, 2019, at 9:04 PM, 'Dan White' via Puppet Users > wrote: > > Is there any current documentation about how to create user resources with an > ldap provider ? Let me be a bit more specific on this question. I am looking for the setup details to all

[Puppet Users] LDAP ? User type provider documentation ? Hiera Back End ?

Is there any current documentation about how to create user resources with an ldap provider ? A working hiera ldap backend would also be nice to have. —- "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it

Re: [Puppet Users] Accessing the list of classes assigned to a node from within puppet

How about a variation on this : # In site.pp, outside of any node definitions and below any top-scope variables: lookup('classes', Array[String], 'unique').include Lose the “include” and you have : $class_list = lookup('classes', Array[String], 'unique') —- "Someti

Re: [Puppet Users] Puppet Module Best Practice (Roles/Profiles)

Thanks for the detail, Rob. I was racking my brain to compose a response with minimum success so far. “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.”  (Bill Wa

Re: [Puppet Users] Puppet Module Best Practice (Roles/Profiles)

There appears to be contradiction here. If “one-off” changes for “new functionality” are needed, why are the changes going into a base/profile module ? Would some more specific and detailed examples be possible ? — "Sometimes I think the surest sign that intellige

Re: [Puppet Users] Hiera and precedence

I think you have it bass-ackwards https://puppet.com/docs/puppet/5.0/hiera_hierarchy.html "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Calvin & Hobbes) > On Jan 17, 2019, at 12:40 PM, Peter

Re: [Puppet Users] Checking if a directory is a mount point

Try $fact[‘mountpoints’] > On Nov 6, 2018, at 6:06 PM, pbisbal via Puppet Users > wrote: > > I want to check to see of a directory is a mount point for a separate > partition. For example, I'd like to check to see if /tmp is a separate > partition or is just part of the root partition on a L

Re: [Puppet Users] Set default param value based on another param

ogic you need for coming up with a default value is complex, it >> can be written as a function to which you present the input as >> arguments. The above could have been written: >> >> function mymodule::conf_default(String $base) { "${base}/conf" } >> class mycla

Re: [Puppet Users] Set default param value based on another param

You need to do like this: class myClass ( String $base_dir, Optional[String] $conf_dir, ) { if $myClass::conf_dir == undef { $myClass::actual_conf_dir = "$myClass::base_dir/conf” } else { $myClass::actual_conf_dir = $myClass::conf_dir } … and then use $myClass::actu

Re: [Puppet Users] Duplicate declaration

Separate the client base directory resource from the application directory resource. When declaring each application directory, add a “require” parameter with a value of the client base directory. "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is th

Re: [Puppet Users] Puppet Basics Blog Post

Satellite 6.3 has the option for Puppet 4, but I do not yet know the exact version. You may have better luck after an upgrade. > On May 7, 2018, at 9:38 PM, warron.french wrote: > > Martin, Red Hat Satellite (even version with 3.8.6) doesn't support EPP > templates. > > > > \\Warron French

Re: [Puppet Users] How to check if module in use.

How about checking out /opt/puppetlabs/puppet/cache/state/classes.txt ? Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us

Re: [Puppet Users] Trigger options minutes_interval and minutes_duration don't work in PE version 2016.1.1

You are missing underscores: Should be minutes_interval and minutes_duration > On Mar 9, 2017, at 10:37 PM, Karthik Durairajan > wrote: > > Hi, > > We are trialing out Puppet Enterprise (V2016.1.1) and despite being mentioned > in the Puppet documentation (https://docs.puppet.com/puppet/4.9/t

Re: [Puppet Users] Manage delivery and execution of RPMs not in YUM

+1 To manage an RPM not in yum, put it into yum. > On Mar 2, 2017, at 11:02 AM, Garrett Honeycutt > wrote: > >> On 3/2/17 9:58 AM, warron.french wrote: >> Hello all, >> can someone please advise me on a proper set of syntax (a file to look >> at) for an example to follow to solve the following

Re: [Puppet Users] Re: User Management from LDAP / freeipa

Your IdM platform may offer > a way to do network profiles, or you can use NFS or similar to provide them > on machines. Those are likely better approaches to investigate in the long > term. > > > Rob Nelson > rnels...@gmail.com > >> On Tue, Feb 7, 2017 at 11:

Re: [Puppet Users] Re: User Management from LDAP / freeipa

- and Puppet can "see" it : >> >> [root ~]# puppet resource user dewhite >> user { 'dewhite': >> ensure => 'present', >> comment => 'Daniel White', >> gid => '68441', >> home => 

Re: [Puppet Users] User Management from LDAP / freeipa

by removing the lockfile. From the end user perspective I've had the > same dotfiles for many years and I don't want my $HOME customizations > interfered with. > >> On Mon, Feb 06, 2017 at 02:33:35PM +, Dan White wrote: >> I am trying to figure out if I

[Puppet Users] User Management from LDAP / freeipa

the manifest. My goal is to add things like dot-files and such. I want to either be able to detect the existance of an LDAP created user or I would like to be able to manage the freeipa/LDAP users from Puppet. Any ideas ? Dan White | d_e_wh...@icloud.com ---

Re: [Puppet Users] Satellite Puppet

classifier (ENC), any of these classes or defined types can be declared by name. The Red Hat Satellite Puppet Guide does not really discuss setting up nodes.   It seems to focus on how Satellite can manage the Puppet modules. Dan White | d_e_wh...@icloud.com

Re: [Puppet Users] facing issues while using fact hashes

Suggestion one: Use a newer version of Puppet. Suggestion two: Any way to see how the fact information is showing up ? It may be possible to hash-icy it. > On Nov 24, 2016, at 12:34 PM, giridhar kazama wrote: > > Hello, > > > We are trying to use fact hashes in satellite 6.2(puppet 3.8) and

Re: [Puppet Users] Puppet agent for VMware agent nodes

My understanding is that with Satellite and Puppet Enterprise in the same environment, PE is configured with a PE-Satellite module to take the place of the Puppet inside Satellite. If I am not accurate, there are lots of other folks out there in MailingListLand that will step up and correct me

Re: [Puppet Users] Puppet agent for VMware agent nodes

A bit more clarification I realized was omitted: The version of Puppet inside Satellite is the Open Source version, so it would not work with nodes running PE-agents. > On Sep 29, 2016, at 9:41 PM, Dan White wrote: > > My understanding is that with Satellite and Puppet Enterprise in

Re: [Puppet Users] Puppet 3.8 EOL Question

THAT is the definitive kind of answer I was hoping for. Many thanks, James. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us

Re: [Puppet Users] Puppet 3.8 EOL Question

It does, but it does not make any mention of the almost-obsolete Puppet inside Satellite Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to

Re: [Puppet Users] Puppet 3.8 EOL Question

Good idea, but I thought I'd ask in both camps. Thanks. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: C

[Puppet Users] Puppet 3.8 EOL Question

PE version that incorporates it." My question is : How will the EOL of (PE/Open Source) Puppet 3.8 (the last of the 3's!) affect Red Hat Satellite 6.x (which contains/incorporates a customized Open Source Puppet 3.x) ?? Dan White | d_e_wh...@icloud.com

[Puppet Users] How might I go about combining ...?

https://docs.puppet.com/pe/latest/cmgmt_control_repo.html and https://docs.puppet.com/puppet/4.6/reference/lookup_quick_module.html In the Module Data example, it appears that local modifications to the puppetlabs-ntp module are necessary. Confuzzlement Overload ! Dan White | d_e_wh

Re: [Puppet Users] How to handle predictable network interface names

It is a starting point. Many thanks for sharing what you can. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson

Re: [Puppet Users] How to handle predictable network interface names

Very nice, Luke. Does the code that lets you custom-name your interfaces live in github or puppet-forge anywhere ? If not, would you be willing to share ?  I can bring brownies and/or beer to the collaboration :) Dan White | d_e_wh...@icloud.com

Re: [Puppet Users] Anyone using a recent version of PE on RHEL 7 ?

Thanks. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes) On Aug 23, 2016, at 08:4

[Puppet Users] Anyone using a recent version of PE on RHEL 7 ?

I have a potential choice to build a Puppet Server on either RHEL 6 or 7. I'm leaning toward 7 unless there are some serious horror stories. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists else

Re: [Puppet Users] managing vmware-tools with puppet

Your response is confusing, Rob. The process I have been using lately is to uninstall the VMWare-provided tools completely, then install OVT. It shows up in vSphere Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that

Re: [Puppet Users] managing vmware-tools with puppet

Did you know that VMWare encourages the use of the open-vm-tools ? You might want to reconsider. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has

Re: [Puppet Users] Re: ssh_authorized_key ensure => absent?

Did you try purge_ssh_keys => true, as described at https://docs.puppet.com/puppet/latest/reference/types/ssh_authorized_key.html "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Calvin & Hobbes)

Re: [Puppet Users] ssh_authorized_key ensure => absent?

What version is your master / agent ? Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes)

Re: [Puppet Users] Is it possible to gracefully exit the puppet agent run after sending facts?

Or have the suggested cron script run "facter -p" and deal with the output as appropriate ? Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it ha

Re: [Puppet Users] Is it possible to gracefully exit the puppet agent run after sending facts?

Puppet is, IMHO, the wrong tool for this job. If you need info every 5 minutes, make a cron script to run and push the info where it is needed. I am guessing you do not need ALL the facts. Is that correct ? > On Jul 7, 2016, at 8:19 PM, Haani Niyaz wrote: > > Background: > > We are interest

Re: [Puppet Users] Docs Typo (I think)

Done. https://tickets.puppetlabs.com/browse/DOCUMENT-562 Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson

Re: [Puppet Users] Docs Typo (I think)

Later today. Glad to contribute. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes) On Ju

[Puppet Users] Docs Typo (I think)

,puppetmaster01.example.com,puppet,puppet.example.com reports = puppetdb storeconfigs_backend = puppetdb storeconfigs = true environment_timeout = unlimited What's with that "trusted" under [main] ? Caused an error when I copied it and there is no reference to such a config setting in the d

[Puppet Users] Anyone know how to use the puppetlabs-packer module ?

anyway, Thanks. Dan White y...@comcast.net - “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us

Re: [Puppet Users] Packaging scripts for Puppetlabs Vagrant images?

Depending how time critical this is, I would be willing to help you whip up an appropriate box. Can it hold until the weekend ? Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the

Re: [Puppet Users] Packaging scripts for Puppetlabs Vagrant images?

://blogs.oracle.com/fatbloke/entry/virtualbox_and_linux_kernel_updates The command I used was :  /etc/init.d/vboxadd setup And then you need to reload/restart the VM thru Vagrant Holler if that does not work for you and I can try to walk you thru what I did. Dan White | d_e_wh...@icloud.com

Re: [Puppet Users] Multiple CA setup.

Could the regional masters be set up as intermediate certificate authorities ? I found a link that describes the basics. https://jamielinux.com/docs/openssl-certificate-authority/create-the-intermediate-pair.html Dan White | d_e_wh...@icloud.com

Re: [Puppet Users] Run Puppet Class only once

Can you provide more detail on exactly what you want to do ? A generic how-to request does not work in this instance. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is

Re: [Puppet Users] Hiera Hash Merge Issues

Try command line.  Use the debug option Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes)

Re: [Puppet Users] Hiera Hash Merge Issues

UNless the hiera.yaml you provided is incomplete, you did not tur on deep merging. https://docs.puppet.com/hiera/3.1/configuring.html#deepmergeoptions Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life

Re: [Puppet Users] Trouble creating a release RPM from puppetlabs/puppet source repo

First Silly Question: Why ? What do you need to do that cannot be done with the RPM's from a Puppetlabs repo ? Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that

Re: [Puppet Users] Hiera Hash Merge Issues

Better suggestion. Thanks, Peter. Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes) On Ju

Re: [Puppet Users] Hiera Hash Merge Issues

Have you tried hiera command line debugging ? Dan White | d_e_wh...@icloud.com “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Ho

Re: [Puppet Users] Creating multiple directories based on variables or array

think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes) On Oct 13, 2015, at 03:23 PM, Dan White wrote: Here's a snippet from my user management define that shows how I deal with making a d

Re: [Puppet Users] Creating multiple directories based on variables or array

Here's a snippet from my user management define that shows how I deal with making a directory that might be many levels deep :        # create the homedir-dir       exec { "mkdir-${username}":         command => "/bin/mkdir -p ${homedirdir} ; /bin/chgrp ${gname} ${homedirdir}",         unless  

Re: [Puppet Users] Exclude an element from array

The puppet manifest would simplify to : class foo ( $services_to_stop = [], ) { include 'stdlib' if size($services_to_stop) > 0 { service { $services_to_stop : ensure => stopped, enable => false,

Re: [Puppet Users] Exclude an element from array

Has anyone considered taking the array of services out of the code and putting it into Hiera ? Much easier to vary the array from there. > On Oct 10, 2015, at 9:56 PM, Henrik Lindberg > wrote: > >> On 2015-10-10 4:47, Vikas Kumar wrote: >> Hello Everyone, >> >> I have a very basic code to st

Re: [Puppet Users] Slow user resource-type when host is attached to LDAP directory

Me too, please “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes) On Sep 29, 2015, at 05:53 AM, Alan Chalmers wrote: Josh, Did you ever get a resolution for this? thanks al

Re: [Puppet Users] params.pp vs Hiera

Your observation is on target. Now consider a module that has to support multiple operating systems, multiple locations, et cetera, ad infinitum. You can either have a whopping huge params.pp file that contains all the logic and possibilities, or you set up Hiera to pick and choose for you, com

Re: [Puppet Users] Is there a method for puppet to find all suid files?

FWIW, here's what I did in a previous environment:  I have a script that is run by cron once a day (in the wee, small hours) that scans for all SUID/GUID files and compares them to a list of allowed SUID/GUID kept with the script.  The script and the list are maintained by puppet.   The output

Re: [Puppet Users] How to ensure puppet agent run if cron is used and service disabled?

You can also check /var/lib/puppet/state on each agent for details of the last run. If you use reporting, /var/lib/puppet/reports on the puppet master will yield similar info > On Jul 2, 2015, at 10:12 AM, staceytian4...@gmail.com wrote: > > Hi, > > I have a question about how to manage puppe

Re: [Puppet Users] A few getting started questions

Inline responses > On Jun 19, 2015, at 12:27 PM, Adaryl Wakefield > wrote: > > I'm trying to get started with Puppet and have a few questions: > 1. Is this the right place to ask questions or should I use the message > boards instead? This is one of many places to ask. There is the Ask Puppet

Re: [Puppet Users] Wanna see something scary ?

resources the manifests are applied to. Probably best if they don't scare you ;) On 16 Jun 2015 18:11, "Dan White" wrote: It scared the beans out of me when I found this code in a manifest I am tasked to update / refactor. Does this look as outrageously wrong to you all as it loo

[Puppet Users] Wanna see something scary ?

It scared the beans out of me when I found this code in a manifest I am tasked to update / refactor. Does this look as outrageously wrong to you all as it looks to me ? Variable names have been edited to protect the guilty class role::one {   hiera_include('profile::aa')   hiera_include('profil

Re: [Puppet Users] Puppet Learning VM - Resource Ordering Quest - Task 6/6

OK. Here are the significant bits: Debug: importing '/etc/puppetlabs/puppet/environments/production/modules/sshd/manifests/init.pp' in environment production Debug: Automatically imported sshd from sshd into production Debug: /Stage[main]/Sshd/Package[openssh-server]/before: requires File[/et

Re: [Puppet Users] Puppet Learning VM - Resource Ordering Quest - Task 6/6

Add the debug flag (--debug) and see what you get. Also, put a dummy notify resource in your module file to get an indication that it is being processed. Like this :                     notify {'here I am': } “Sometimes I think the surest sign that intelligent life exists elsewhere in the unive

Re: [Puppet Users] Apache still the recommended server for Puppet?

At the bottom of the page is the following:  Next At this point, Puppet is installed, but it isn’t configured or running. You should now do the post-install tasks. which brings you to this : https://docs.puppetlabs.com/guides/install_puppet/post_install.html#configure-a-production-ready-web-ser

Re: [Puppet Users] fstab dilemma - pounding on file_line and augeas

Thanks for the info. "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Calvin & Hobbes) > On May 17, 2015, at 4:23 PM, Felix Frank > wrote: > >> On 10/08/2

Re: [Puppet Users] New MCollective Plugin for OpenSCAP Scanning

Try https://github.com/onyxpoint/presentation-puppetcamp2015-mco-oscap > On May 16, 2015, at 1:05 PM, Walid wrote: > > Hi Trevor > > the link is not working for me, it points to three blogs none of them are > related to mco

Re: [Puppet Users] Fast track to learning Puppet?

Just call me Old Nine-Fingers 😀 > On May 15, 2015, at 9:12 AM, jcbollinger wrote: > > > >> On Thursday, May 14, 2015 at 1:03:54 PM UTC-5, LinuxDan wrote: >> IMHO, there is no One Tool, but rather a combination of Tools That Do A Few >> Things Very Well. > > > Haven't you ever thrown Puppe

Re: [Puppet Users] Fast track to learning Puppet?

First comment: Do you currently use a tool like Jenkins or Mavin to deploy these Java services ? If so, continue.  If not, consider it. My experience with Puppet is that it is not The Universal Tool That Does Everything.  It does a lot, but there are some things that other tools do better.  C

Re: [Puppet Users] marking last modified time in a template

If Puppet manages the file, then the file's mod time is the time in question. Why do they want it IN the file ? "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Waterson (Calvin & Hobbes) > On May 6, 2015

Re: [Puppet Users] Hiera Hash Merge - Avoiding Duplicating

Have you tried plain YAML ? Your code looks OK, but I cannot be certain without tinkering. My initial thought is that the eyaml backend may be to blame. "Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us." Bill Wa

Re: [Puppet Users] Running a daemon only during certain hours of the day

What about setting the state of the service based on clock time ? It would depend on how often puppet runs. The cron suggestion would complement this in a nice "belt-and-suspenders" solution. “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that no

Re: [Puppet Users] How to check if a class is being used?

There is something basically wrong with this, IMHO If you need to do this, it means that there could be more than one place to instantiate the class, and we all know the problems caused by doing it more than once. You may want to consider refactoring to separate the class instantiation from th

Re: [Puppet Users] Any pointers to RHEL7 CIS hardening usig puppet

On Mar 31, 2015, at 03:06 AM, Brad Knowles wrote:On Mar 30, 2015, at 9:34 PM, Dan White <d_e_wh...@icloud.com> wrote:To sum up my point of view: (preface this whole block with “I believe…/I think…/IMHO…”)Puppet-izing the CIS Hardening Guidelines should be done throughout the entire cata

Re: [Puppet Users] Any pointers to RHEL7 CIS hardening usig puppet

dividual rules or groups of rules. I will try to get a git-repo started by the weekend, but it is Easter weekend and I have some family obligations I cannot (and do not wish to) side-step. Any requests for a section to start on ? Thanks Peter You are most welcome Dan On 30 March

Re: [Puppet Users] Any pointers to RHEL7 CIS hardening usig puppet

; to > illustrate this, blink at all the o+r.) If you want hardening in the standard > modules maybe the authors will accept patches with $enablehardening type of > class parameters toggling things? > >> Thanks >> Peter >> On 30 March 2015 at 07:41, Dan White

Re: [Puppet Users] Any pointers to RHEL7 CIS hardening usig puppet

r On 30 March 2015 at 07:41, Dan White wrote: I believe that making a module out of the CIS Hardening Guidelines is the wrong approach. I implemented RHEL 5 and RHEL 6 hardening throughout my catalog. Specific example: Guidelines for ssh_config and sshd_config are in th

Re: [Puppet Users] Any pointers to RHEL7 CIS hardening usig puppet

I believe that making a module out of the CIS Hardening Guidelines is the wrong approach. I implemented RHEL 5 and RHEL 6 hardening throughout my catalog. Specific example: Guidelines for ssh_config and sshd_config are in the ssh moduile. “Sometimes I think the surest sign that intelligent l

Re: [Puppet Users] Hiera testing

My current site.pp sets a few global level variables and then all I need is : node default { hiera_include('classes') } I am not sure what kind of response you are looking for. “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it

Re: [Puppet Users] Can a type/provider be written to use Python libraries ?

Thanks for the sanity check, John. Next question: If I want to make a type/provider that depends on an external script (Python in this case), does anyone know of a good example I can use as a blueprint ? “Sometimes I think the surest sign that intelligent life exists elsewhere in the univers

[Puppet Users] Can a type/provider be written to use Python libraries ?

Looking at developing a type/provider for RHSM. Python API libraries exist, but not Ruby. I found the RubyPython gem, but the idea of an imbeded Python interpreter seems a bit scary. Anyone been down this road or am I trailblazing again ? “Sometimes I think the surest sign that intelligent lif

Re: [Puppet Users] External Facts in //facts.d/

> interesting, I think I can reproduce, with facter 2.4.1. Might be a bug. > > I observe `puppet agent` opening my $vardir/facts.d files (through > strace), but not `facter -p`. > > Cheers, > Felix > > On 02/09/2015 05:41 PM, Dan White wrote: >> Puppet 3.7.3 >&

Re: [Puppet Users] Copying a hash with changes

Make a hash with the update in it and then merge them (needs stdlib) Like this: $new_hash = { 'log' => "${log_ip} local0", } $global_options = merge ( $haproxy::params::global_options, $new_hash ) https://forge.puppetlabs.com/puppetlabs/stdlib#reference • merge: Merges two or more hashes tog

Re: [Puppet Users] Access to one element from a yaml

More detail is needed to answer the question. Here are (I hope) some helpful suggestions: The data you list is a hash. How does one get the first "element" from a hash ? In what context are you trying to access the information ? Manifest ? Template ? No in Puppet at all ? One thing that c

Re: [Puppet Users] install hiera-puppet on centOS 6.6

Yes. That package is for old versions of Puppet before they rolled hiera into it by default. “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes) On Feb 21, 2015, at 01:28 PM,

[Puppet Users] External Facts in //facts.d/

Puppet 3.7.3 Facter 2.3.0 running on RHEL 6 Reference: https://docs.puppetlabs.com/facter/2.2/custom_facts.html#fact-locations  I put a simple fact_file.txt in one of my modules to try this new feature. When I run puppet agent, I see the fact file deployed to /var/lib/puppet/facts.d/ However,

Re: [Puppet Users] Passing Blank Values in Hiera Hashes

Looks to me like the template upstream_header.erb is not built to handle this. I know a template that can handle this sort of input -- Check out https://github.com/puppetlabs/puppetlabs-mysql/blob/master/templates/my.cnf.erb line 9 specifically looks for true or '' in the value of a key/value pa

  1   2   3   4   5   6   >