You can use hiera gpg for ssh keys too.
See this example:
https://groups.google.com/d/msg/puppet-users/jHcuKQXT9cQ/g23Lmf4e6b8J
On Tue, Nov 19, 2013 at 1:03 PM, Sergey Arlashin <
sergeyarl.maill...@gmail.com> wrote:
> Hi!
>
> I'm trying to secure some data inside my puppet repository. Some pas
I have to say, both hosts are in /etc/hosts to be sure it's not a DNS issue.
Op woensdag 20 november 2013 01:54:09 UTC+1 schreef yamaka...@gmail.com:
>
> Hi Mark,
>
> Yes I removed /var/lib/puppet/ssl on the agent.
>
> At the moment I get an: Error: Could not request certificate: Connection
> tim
Hi Mark,
Yes I removed /var/lib/puppet/ssl on the agent.
At the moment I get an: Error: Could not request certificate: Connection
timed out - connect(2)
But what I see on the master when running the agent on a client:
tcp0 0 10.0.0.250:8140 dhcp-01.domain...:46779
SYN_REC
Did you clean the agent cert store out as well?
I've run into similar and that's sorted the issue.
Regards,
Mark Walkom
Infrastructure Engineer
Campaign Monitor
email: ma...@campaignmonitor.com
web: www.campaignmonitor.com
On 20 November 2013 10:48, wrote:
> Hi All,
>
> I'm facing a very stra
Hi All,
I'm facing a very strange problem.
Because I had some mismatching with new agents I decided to remove all my
cerst and start over. This all goes well, I can sign new agent-certs but
after that when I run an agent test I get some strange error:
Error: /File[/var/lib/puppet/lib]: Failed
Sometimes yum (and things calling it) do better when using
package-name.arch like openldap-libs.i386 vs openldap-libs.x86_64 if
that makes sense. I think that's what's happening.
On Tue, Nov 19, 2013 at 5:43 AM, Dan White wrote:
> Did you try
>
> yum update --verbose
>
> as suggested ?
>
>
> “S
Hi!
I'm trying to secure some data inside my puppet repository. Some passwords and
private ssh keys.
I have discovered a plenty of ways to secure passwords - hiera gpg,
puppet-decrypt, extlookup and so on. What about files? Is there a decent way
to encrypt files, for example ssh keys?
--
Be
Hi All,
Using Jenkins to perform CI as well as automated deployment of puppet
modules to our master.
One thing that I am trying to figure out, is what is the best way when
deploying the modules to have puppet not "error" out communication wise if
nodes happen to check in while the deployment i
Hi John,
I'm new around here, but I'm also in the same situation as Tom, who started
this thread.
I was wondering if you could expound a little bit on the better solution
that you mention. I write what I could refer to as "third grade puppet",
but I'd like to get better.
When you suggest f
On 19/11/2013 1:30 PM, Marc Lucke wrote:
I have PE with 10 licenses free & no support contract (yet - just
playing).
"Notice: Waiting for SSH response..." tells me what I knew anyway:
puppet node_aws bootstrap won't work with Windows machines - or am i
doing something wrong. Can anyone conf
Paolo, thank you so much for the info. It is a bit confusing, so I've got a
bit of a ways to go, but it is helpful in designing a comprehensive puppet
infrastructure.
Can you provide any more details on your "puppet proxy" server
configuration? I do not have much experience dealing with Apache
Paolo, thank you so much for the info. It is a bit confusing, so I've got a
bit of a ways to go, but it is helpful in designing a comprehensive puppet
infrastructure.
Can you provide any more details on your "puppet proxy" server
configuration? I do not have much experience dealing with Apache
On Tuesday, November 19, 2013 9:23:21 AM UTC-6, Jon McKenzie wrote:
>
> Thanks for the replies and being patient with me!
>
> Maybe I'm thinking about this incorrectly, but it seems to me that
> announcing a dependency ("I need x defined somewhere in order to work
> properly") shouldn't require
On Tue, Nov 19, 2013 at 12:25 PM, Bruce wrote:
> Maybe. But usually I don't know I want this information, until I need it.
> So having to turn on some debugging ahead of time doesn't help.
I am using etckeeper in conjunction with Puppet for exactly this use
case. Additionally, my puppet configur
On Tuesday, November 19, 2013 9:59:23 AM UTC-8, Bruce wrote:
>
>
>> I see how to set the central buckets up. Is there a programatic way to
> access that data?
>
Nevermind. Found http://docs.puppetlabs.com/man/filebucket.html
--
You received this message because you are subscribed to the G
On Tuesday, November 19, 2013 9:29:16 AM UTC-8, R.I. Pienaar wrote:
>
>
> the other side of the coin is that often diffs contain sensitive
> information.
>
> I think the default behaviour used to be that these were in reports but it
> just burned many people.
>
That's true. Maybe it could be
Hello all,
Just a quick update on this issue. We're planning to fix this for 3.4 and
there's a pull request at:
https://github.com/puppetlabs/puppet/pull/2087
Also, after some discussion with Nick F, we renamed the 3 values of
source_permissions to:
use, use_when_creating, ignore
Thanks for a
- Original Message -
> From: "Bruce"
> To: puppet-users@googlegroups.com
> Sent: Tuesday, November 19, 2013 5:25:32 PM
> Subject: Re: [Puppet Users] Actual diffs in puppetdb?
>
>
>
> On Tuesday, November 19, 2013 9:05:05 AM UTC-8, Ryan Senior wrote:
> >
> > I've recently added a featu
On Tuesday, November 19, 2013 9:05:05 AM UTC-8, Ryan Senior wrote:
>
> I've recently added a feature to catalog hashes, similar to what you are
> describing as a sort of debug mode option. It's in master now and should
> be in the next release (1.6). More information is available in the ticke
For vagrant, are you kicking off the commands with the vagrant puppet
provisioner? And are you using vagrant-windows plugin?
On Tue, Nov 19, 2013 at 8:28 AM, Felix Frank <
felix.fr...@alumni.tu-berlin.de> wrote:
> Hi,
>
> I haven't played with Vagrant, but your wording makes me ask:
>
> Is there
I've recently added a feature to catalog hashes, similar to what you are
describing as a sort of debug mode option. It's in master now and should
be in the next release (1.6). More information is available in the ticket
here: http://projects.puppetlabs.com/issues/22977. It has the potential to
be
Any plans to get the actual diffs of file changes into puppetdb? Right now
you get the hashes of the buckets on the host, but if diffs could get into
puppetdb, it could be extremely useful.
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To u
That's fine.
Can you put your code into PasteBin or gist.github.com? We can work from
there.
Cheers,
Felix
On 11/19/2013 05:06 PM, ulrich igor ngouagna kouete wrote:
> Sorry but I do not understand :( I'm quite a newbee in all these...
--
You received this message because you are subscribed to
Sorry but I do not understand :( I'm quite a newbee in all these..
Le mardi 19 novembre 2013 15:45:06 UTC+1, Felix.Frank a écrit :
>
> Hi,
>
> where does the ruby code of your custom type reside?
>
> Make sure that ruby's include path (`ruby -e 'puts $:`) will read your
> working tree first. To
Sorry but I do not understand :( I'm quite a newbee in all these...
Le mardi 19 novembre 2013 15:45:06 UTC+1, Felix.Frank a écrit :
>
> Hi,
>
> where does the ruby code of your custom type reside?
>
> Make sure that ruby's include path (`ruby -e 'puts $:`) will read your
> working tree first. T
Hi,
that's basically correct, but I'd like to ask you to get more specific
than that.
Both can be desirable:
1. Require a whole class: I don't care which resource makes sure my
apache is installed - I require the whole class to be successfully
evaluated before my dependent resource is applied (o
Thanks for the replies and being patient with me!
Maybe I'm thinking about this incorrectly, but it seems to me that
announcing a dependency ("I need x defined somewhere in order to work
properly") shouldn't require a class to declare the dependency as well. It
seems to me that the dependent cl
Hey, all;
Thanks for the responses. I appreciate it. I was unaware that the file
resource handles selinux. I seem to remember one of my searches saying
puppet didn't support selinux. Maybe an old version of puppet or a
misread, either way, I'll take that route.
I know my attempt at executi
Hi,
where does the ruby code of your custom type reside?
Make sure that ruby's include path (`ruby -e 'puts $:`) will read your
working tree first. To be safe, run puppet as
RUBYLIB=/path/to/my/lib puppet apply .pp
HTH,
Felix
On 11/19/2013 12:25 PM, ulrich igor ngouagna kouete wrote:
> Hi,
>
On Monday, November 18, 2013 10:41:39 PM UTC-6, Rich Burroughs wrote:
>
> If you really mean assign, no. UIDs are managed through the user resource
> type:
>
> http://docs.puppetlabs.com/references/latest/type.html#user
>
>
>
Well, that's what Stuart is using. He switched up on you.
I take th
Hi,
if memory serves, --detailed-exitcode (one of the more annyoing
implications of --test) will return the number of resources that changed.
So are there any other things that puppet did during its run?
Generally, if you want to use the exit code of `puppet agent` (or apply)
to determine whethe
Hi,
I haven't played with Vagrant, but your wording makes me ask:
Is there indeed an agent (as in `puppet agent` as opposed to `puppet
apply`) at work? Because that will never use a manifest from your local
machine. Puppet agent has the sole purpose of connecting to a master.
Cheers,
Felix
On 1
Well, apparently you *can* in fact use puppet dashboard without PE:
https://github.com/puppetlabs/puppet-dashboard
HTH,
Felix
On 11/18/2013 08:18 PM, Stuart Cracraft wrote:
>
> Hi,
>
> I spent a lot of time with Puppet Enterprise and like it. Lately, I've been
> doing Open Source Puppet.
>
Did you try
yum update --verbose
as suggested ?
“Sometimes I think the surest sign that intelligent life exists elsewhere in
the universe is that none of it has tried to contact us.”
Bill Waterson (Calvin & Hobbes)
- Original Message -
From: "Richie Rees"
To: puppet-users@goog
Hello again Ygor,
Its a 64 bit internal package, its only built for the 64 bit platform.
there are a number of different versions in the repo but none of the same
major build so can't see why it would be getting confused.
Thanks,
Richie.
On Tuesday, 19 November 2013 13:23:47 UTC, Ygor wr
Details, please.
What is the package in question ?
Are you running 32 bit or 64 bit ?
“Sometimes I think the surest sign that intelligent life exists elsewhere in
the universe is that none of it has tried to contact us.”
Bill Waterson (Calvin & Hobbes)
- Original Message -
From:
On 19 November 2013 09:48, Richie Rees wrote:
> Hi All,
>
> Come to borrow some of your collective wisdom again, Seeing a problem
> installing an rpm using a fairly basic class on a RHEL 5 box using yum as
> the provider, I am seeing the following error message :-
>
> *Error: Could not update: F
On 19 November 2013 04:32, Stuart Cracraft wrote:
> There are more ports, no?
>
No, that's it. Unless you add to the mix things like puppetdb, where
you'd need the puppetdb and postresql ports opening up, dependent on where
in your infrastructure you place those services.
Regards,
Matt.
--
Hi,
I'm trying to develop a custom type, and I'm working on a stand alone mode
(using puppet apply to apply my manifest). After modifying the type (adding
a new parameter for example), when I try to apply the manifest again, it
says that the new param is unknown. I found on the official doc tha
Hi Karl,
this topic has been discussed many times, particularly in respect of "large
scale" and "distributed".
There are many possible setups/solutions.
I try to add my 2cents, firstly pointing out main issues.
Cannot say if this setup can be recommended, but it works well for us.
1) how large
Hi all,
I have been working on a configuration of a Masterless configuration on
Windows. I am able to get individual jobs to run like:
puppet apply
However, I would like to spin up the Vagrant box off a base VM, and have a
puppet manifest file in a location where puppet knows to look and pro
Hi All,
Come to borrow some of your collective wisdom again, Seeing a problem
installing an rpm using a fairly basic class on a RHEL 5 box using yum as
the provider, I am seeing the following error message :-
*Error: Could not update: Failed to update to version 5.35.0-3_el5 , got
version 5.
42 matches
Mail list logo
