Hrm. You mean can the client initiate a command on the puppetmaster? Yes - but only really at compile time ... so its probably not the right way to do it.
Do you have a 'virtualisation manager app' that spawns your amazon instances or are you using the web GUI amazon provides? I think architecturally your 'virtualisation manager app' is the right place to do disk attaches - whatever form that takes. That can make the necessary calls at instance boot time to attach the right drives as well. And if you still want the client to trigger the attach ... if your 'virtualisation manager app' supports an API - the new server could call back to that API. The idea being that whatever virt manager you use would have more fine grained access control then the amazon web service does. ken. On Apr 22, 12:19 pm, Phillip B Oldham <phillip.old...@gmail.com> wrote: > On Apr 22, 12:04 pm, Ken <k...@bob.sh> wrote: > > > > I personally prefer to set-up the instances externally with some other > > > tool, > > > saves having AWS credentials on the EC2 instance. > > > I agree. Its a concern that each box will have so much control over > > not only themselves but other instances that the key has access to. If > > that 1 box is compromised then the would-be hacker can take control of > > all the other boxes as well. > > Can the puppet master issue the ec2 commands from the main server > then? If not, any suggestions for other tools with which I can > automate this part of the process? > > -- > You received this message because you are subscribed to the Google Groups > "Puppet Users" group. > To post to this group, send email to puppet-us...@googlegroups.com. > To unsubscribe from this group, send email to > puppet-users+unsubscr...@googlegroups.com. > For more options, visit this group > athttp://groups.google.com/group/puppet-users?hl=en. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
