New puppet user - masterless
233 views
Skip to first unread message
pskov...@gmail.com
Jan 9, 2014, 5:54:19 PM1/9/14
to puppet...@googlegroups.com
Hi everyone,
We have a number of servers that we would like to manage remotely - mainly to set the servers up with relevant software/files when they are first set up. Additionally, we would like to make changes after the initial set up. For now, we would like to concentrate only on new servers and leave existing servers unmanaged. All servers are Windows ones with a mix of 2003 and 2008.
I've been playing with Puppet Open Source for a number of weeks now and I have a few questions. I am considering doing a masterless setup as we generally want to do a one time set up and most of the servers are different. There are a number of things that they share, such as hosts file but only some servers require, say, Apache installed. It needs to be easy to use and generally idiot-proof.
I understand that with masterless set up, I simply need to run puppet apply <file.pp> on each server and that's fine. To do it remotely, I am thinking of using something like psexec tool from Microsoft. However, it's not exactly fool proof. Yes, there are a couple of front-ends for psexec but I would ideally like something web UI based. I could write my own front-end in PHP but I don't want to reinvent the wheel if something already exists. Is there something web-based that I am able to kick off "puppet apply" command from? I would ideally like to run it in Apache under Windows so I can do away with Linux altogether.
I've been battling with getting the likes of passenger working with the puppet master but essentially gave up as I am not overly hot with Linux and I've been getting a ton of dependency errors (Ruby mainly) without being able to resolve them. So, that's pretty much out of the window and partially the reason why I decided to go masterless.
Also, I've seen a few git based solutions but having never used git, it's a bit over my head and there are no simple step-by-step tutorials that I could follow.
Any advice appreciated.
Thanks
Alex
Johan De Wit
Jan 10, 2014, 7:49:50 AM1/10/14
to puppet...@googlegroups.com
This book : http://www.packtpub.com/puppet-3-beginners-guide/book is
describing a masterless setup with git. As all books about puppet, the
setup is linux based.
I dontt' have any experience with windows.
Grts
Jo
> You received this message because you are subscribed to the Google
> Groups "Puppet Users" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to puppet-users...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/puppet-users/0c1dcd28-3bb9-4759-899a-e00559e783d9%40googlegroups.com.
> For more options, visit https://groups.google.com/groups/opt_out.
--
Johan De Wit
Open Source Consultant
Red Hat Certified Engineer (805008667232363)
Puppet Certified Professional 2013 (PCP0000006)
_________________________________________________________
Open-Future Phone +32 (0)2/255 70 70
Zavelstraat 72 Fax +32 (0)2/255 70 71
3071 KORTENBERG Mobile +32 (0)474/42 40 73
BELGIUM http://www.open-future.be
_________________________________________________________
Next Events:
Puppet Fundamentals Training | http://www.open-future.be/puppet-fundamentals-training-4-till-6th-february
Puppet Intruction Course | http://www.open-future.be/puppet-introduction-course-7th-february
Zabbix Certified Training | http://www.open-future.be/zabbix-certified-training-10-till-12th-february
Zabbix for Large Environments Training | http://www.open-future.be/zabbix-large-environments-training-13-till-14th-february
Subscribe to our newsletter | http://eepurl.com/BUG8H
Felix Frank
Jan 10, 2014, 9:51:49 AM1/10/14
to puppet...@googlegroups.com
Hi,
note that running puppet without administrator privileges for initial
server setup is probably pointless. Therefor it is my sincere hope that
there is not yet any solution to kick this off via web interface,
because that would imply serious security concerns.
I suppose you could solve this more cleanly with some sort of pull
mechanism that each Windows box invokes during provisioning (e.g. a
scheduled task) that allows you to specify the name of the desired .pp
file in a more secure location.
But then, they *do* have something similar to that, with a pretty good
security model too - it's the puppet master of course ;-)
Cheers,
Felix
note that running puppet without administrator privileges for initial
server setup is probably pointless. Therefor it is my sincere hope that
there is not yet any solution to kick this off via web interface,
because that would imply serious security concerns.
I suppose you could solve this more cleanly with some sort of pull
mechanism that each Windows box invokes during provisioning (e.g. a
scheduled task) that allows you to specify the name of the desired .pp
file in a more secure location.
But then, they *do* have something similar to that, with a pretty good
security model too - it's the puppet master of course ;-)
Cheers,
Felix
Dan White
Jan 10, 2014, 12:26:25 PM1/10/14
to puppet...@googlegroups.com
Unless I am seriously mistaken, "masterless Puppet" is achieved by each node being its own master.
And since puppet-master does not work on Windows (agent only) I suspect that masterless Windows puppet is mot currently possible.
I could be mistaken.
"Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us."
Bill Waterson (Calvin & Hobbes)
To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/52CFA61E.9040708%40open-future.be.
jcbollinger
Jan 10, 2014, 2:26:33 PM1/10/14
to puppet...@googlegroups.com
On Friday, January 10, 2014 6:26:25 AM UTC-6, Ygor wrote:
Unless I am seriously mistaken, "masterless Puppet" is achieved by each node being its own master.
Then I guess you are seriously mistaken. Masterless Puppet is normally achieved by nodes using "puppet apply" against locally-accessible manifests and data. No master is involved. Responsibility for distributing manifests, data, custom plugins, etc. is outside Puppet's scope in this case.
And since puppet-master does not work on Windows (agent only) I suspect that masterless Windows puppet is mot currently possible.
But "puppet apply" does work on Windows, and people do use it to run masterless Puppet on Windows.
John
John
Dan White
Jan 10, 2014, 6:35:52 PM1/10/14
to puppet...@googlegroups.com
Thank you for setting me straight, John.
Instead of sitting in my ignorance, I now stand, corrected.
Instead of sitting in my ignorance, I now stand, corrected.
“Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” (Bill Waterson: Calvin & Hobbes)
--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/375eb3d1-8f91-46b4-8241-76def2d87f6c%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages