[Puppet Users] sshd configuration

Hi, what's the best module/way to change some options in the sshd_config file? I just have to change a couple of options from their OS defaults. I searched in the forge but, apart from the fact that I often find it hard to understand how to use some of the contributed modules, it looks like ssh

Re: [Puppet Users] sshd configuration

Hi Marco, You should take a look at https://forge.puppetlabs.com/domcleal/augeasproviders . Regards, Alexander On Tue, Jun 17, 2014 at 9:59 AM, wrote: > Hi, > what's the best module/way to change some options in the sshd_config file? > > I just have to change a couple of options from their OS

Re: [Puppet Users] sshd configuration

I found that in order to change just some options it is far easier just to write a little ssh module with a template with only the parameters you want yo change. Regards, El 17/06/2014 10:29, "Alexander Holte-Davidsen" < alexander.david...@gmail.com> escribió: > Hi Marco, > > You should take a lo

[Puppet Users] Large files over puppet

I always heard that serve large files over puppet is a bad practice. But...I guess it depends of what you consider a large file. Everyone agree that serve for example a 25MB file over puppet it's definitely not recommended. My question is wether a text file of ~7000 lines and ~700KB would be a

[Puppet Users] Re: Announce: Puppet 3.6.2 [ Security and Bug fix Release ]

Aha, experienced the same thing last week, didn't have time to look into it yet... On Monday, June 16, 2014 3:30:31 PM UTC+2, Byron Miller wrote: > Running puppet 3.6.2 and disable_warnings = deprecations appears to make > no difference to prohibiting the alert about environments. > -- You re

[Puppet Users] Re: "Connection timed out - connect(2)" when using puppet module

Have nobody a hint? I have set http_proxy and https_proxy. curl -k *https://forgeapi.puppetlabs.com* is succesful. curl https://forgeapi.puppetlabs.com curl: (60) SSL certificate problem, verify that the CA cert is OK. Details: error:14090086:SSL routines:S

[Puppet Users] Use external facts inside templetes

I have defined some key value pairs in /etc/facter/facts.d/value.txt file. I could use those keys inside my init.pp script and successfully for the values using *${key1}* I want to get those values inside my template file. I have used *<%= @key1 %>* but it doesn't give me the v

Re: [Puppet Users] What is the puppet way to send configuration details along with the request from the puppet ?

Thank you very much. Yes I have strated implementing it using external facts. On Monday, June 16, 2014 7:03:35 PM UTC+5:30, Christopher Wood wrote: > > It sounds like you want to use facts to make decisions about what > configurations to apply: > > > http://docs.puppetlabs.com/puppet/latest/re

Re: [Puppet Users] Package Resource, Versioning and Yum

Joseph, See https://tickets.puppetlabs.com/browse/PUP-682 I'm going to try and get the pull request rebased, but at best this will be in puppet4. -Jason On 06/12/2014 02:44 PM, Joseph Swick wrote: Hi list, I'm working on a little addition to an internal module we use to ensure our puppet cl

[Puppet Users] Re: Moving from manifest files to ENC script - not working...

Hi, I understood ENC can work without the PuppetDB installation. I cannot make ENC work and I cannot find a log or any way to debug it, so I can find the problem. any idea are welcome. Thanks. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group

Re: [Puppet Users] having issue when trying to install java using rpm

"That's not how it works". In the output below, you can clearly see that Puppet is executing `*/bin/rpm -i puppet:///development/java_rpm/files/jdk-7u25-linux-x64.rpm*`. Why would that work? "puppet:///" means nothing to RPM, and "puppet:///" is not a valid 'source' for the Package type. Yo

[Puppet Users] PuppetDB connection issue - Failed to connect!!

Hi there, Just started using PuppetDB (using the Puppetlabs' module) and getting issues with connection. First it was giving me server Not Found: Error: Unable to connect to puppetdb server (puppet.internal:8081): [404] > Not Found > Notice: Failed to connect to puppetdb; sleeping 2 seconds bef

Re: [Puppet Users] Re: Moving from manifest files to ENC script - not working...

Yes, I have an idea. 1) Read the documentation: http://docs.puppetlabs.com/guides/external_nodes.html 2) If that doesn't help, post your ENC code, with specific examples of output and problems that you're having. On 06/17/2014 07:49 AM, shlo.af...@gmail.com wrote: Hi, I understood ENC can

[Puppet Users] SSL

My environment has been working up until mid last week. just doing a puppet agent --test gives me these results... has anyone ran across this. [root@DC01SLE0005 ~]# puppet agent --test Warning: Unable to fetch my node definition, but the agent run will continue: Warning: SSL_connect returned=1

[Puppet Users] Re: Use external facts inside templetes

Hi there, First of all, if it's a fact, then you really should be doing *${::key1}* instead. To use it in template, *<%= @key1 %>* should work just fine. Otherwise, you can have this: *$localkey = ${::key1}* in your init.pp and then *<%= @localkey %>* in the template but I don't think you go

Re: [Puppet Users] Is PuppetDB environment aware?

The latest version of PuppetDB (ie. 2.0.0) does support environments. The first line of the release note is 'PuppetDB 2.0.0 is a feature release focusing on environments support'. Here the full link: http://docs.puppetlabs.com/puppetdb/2.0/release_notes.html -- Yanis Guenane On 06/16/2014

Re: [Puppet Users] sshd configuration

Il giorno martedì 17 giugno 2014 10:29:08 UTC+2, alexanderdav ha scritto: > > You should take a look at > https://forge.puppetlabs.com/domcleal/augeasproviders . > Wow, that worked great and easy, thanks! I whish I'd found it also before using another puppetforge module for sysctl configuration

[Puppet Users] Re: "Connection timed out - connect(2)" when using puppet module

On Tuesday, June 17, 2014 4:46:47 AM UTC-5, Torsten Kleiber wrote: > > Have nobody a hint? > > I have set http_proxy and https_proxy. > You mean you have set these in your puppet.conf or in your environment? If the former then which one (file system path) and which section? Are you runnin

Re: [Puppet Users] Re: Moving from manifest files to ENC script - not working...

I read the documentation. I send yesterday example of my perl ENC code and the output. I'm sending them again: #!/usr/bin/perl -w > use strict; > use YAML qw(Dump); > > my $hostname = shift || die "No hostname passed"; > > system("echo $hostname >> /tmp/llkkll");

[Puppet Users] Re: Large files over puppet

On Tuesday, June 17, 2014 3:45:57 AM UTC-5, Félix Barbeira wrote: > > I always heard that serve large files over puppet is a bad practice. > But...I guess it depends of what you consider a large file. Everyone agree > that serve for example a 25MB file over puppet it's definitely not > recomme

Re: [Puppet Users] Re: Moving from manifest files to ENC script - not working...

I think, in your yaml, you are missing the name: Grts jo On 17/06/14 15:19, shlo.af...@gmail.com wrote: I read the documentation. I send yesterday example of my perl ENC code and the output. I'm sending them again: #!/usr/bin/perl -w use strict; use YAML qw(D

[Puppet Users] Re: Puppet new deployment questions - deployment patterns, sensitivity to network errors, and certificate headaches.

On Monday, June 16, 2014 2:33:12 PM UTC-5, Stephen Morton wrote: > > I've got some newbie puppet questions. > My team has a tremendous amount of linux/computer knowledge, but we're new > to Puppet. > We recently started using puppet to manage some 100 servers. Their configs > are all pretty si

[Puppet Users] rsync yum.puppetlabs.com failing...

So @ my site we keep a number of software repos mirrored internally (not everything can egress to the net), and a number of these we only sync on demand (say, we want to upgrade puppet, sync the repo is the first step). However, since yesterday morning (24 hours now), I haven't been able to establ

Re: [Puppet Users] Is PuppetDB environment aware?

On Jun 17, 2014, at 8:40 AM, Yanis Guenane wrote: > The latest version of PuppetDB (ie. 2.0.0) does support environments. > > The first line of the release note is 'PuppetDB 2.0.0 is a feature release > focusing on environments support'. > > Here the full link: http://docs.puppetlabs.com/pupp

Re: [Puppet Users] Puppet new deployment questions - deployment patterns, sensitivity to network errors, and certificate headaches.

Thanks Doug and Rich. Yes, I guess I am using the default webrick server. I just enabled the puppet-master service in init.d and assumed that was enough. We already have an Apache instance and I will look into passenger. Based on what I see on the Passenger page, this alone could be the cause o

Re: [Puppet Users] Puppet new deployment questions - deployment patterns, sensitivity to network errors, and certificate headaches.

On 6/16/2014 12:33 PM, Stephen Morton wrote: I've got some newbie puppet questions. My team has a tremendous amount of linux/computer knowledge, but we're new to Puppet. We recently started using puppet to manage some 100 servers. Their configs are all pretty similar with some small changes. ---

Re: [Puppet Users] Package Resource, Versioning and Yum

On 17/06/14 07:41, Jason Antman wrote: > Joseph, > > See https://tickets.puppetlabs.com/browse/PUP-682 > > I'm going to try and get the pull request rebased, but at best this will > be in puppet4. > > -Jason > Thank you, I had come across that bug report as well later on. I wasn't sure origin

Re: [Puppet Users] Puppet new deployment questions - deployment patterns, sensitivity to network errors, and certificate headaches.

google-groups appeared to have eaten the first version from yesterday. Pardons if this is sent twice. 1. I don't think about it as manifests increasing in size, but whether I can completely recreate a server at anytime accurately. Or more importantly can I provision 12 more of any server asap.

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

> Just started using PuppetDB (using the Puppetlabs' module) and getting > issues with connection. First it was giving me server Not Found: > >> Error: Unable to connect to puppetdb server (puppet.internal:8081): [404] >> Not Found >> Notice: Failed to connect to puppetdb; sleeping 2 seconds before

Re: [Puppet Users] Is PuppetDB environment aware?

The support for environments in PDB is for storing the environment where a catalog/factset/report came from ... and you can certainly query on it, but currently with ordinary resource collection you cannot constrain on environment. There is an open ticket in the Puppet queue to do this in the futur

[Puppet Users] Re: [Puppet-dev] Re: Announce: Puppet 3.6.2 [ Security and Bug fix Release ]

(I clipped puppet-announce from this thread) Hi Byron, Stefan, Which deprecation warning are you continuing to see? There is an open issue with the disable_warnings, which is that static environment blocks in puppet.conf will continue to warn: https://tickets.puppetlabs.com/browse/PUP-2739 Is t

[Puppet Users] Open puppet port(s) to the internet

I probably don't really understand much about how puppet connects to the clients, but is there a big security risk about opening it up to the internet so laptops can get their configuration... If it's "safe enough" for any value of safe, what ports does it use? Thanks, -- You received this me

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

Hi Ken, Thanks for the heads up! First of all, it's a VBox VM, provisioned by Vigrant. PuppetMaster and PuppetDB are on the same machine. I did go through those basic checks before posting, which appeared fine: root@puppet:~# telnet puppet.internal 8081 > Trying 127.0.1.1... > Connected to pupp

[Puppet Users] Chocolatey pre-fetch fails with Puppet - Could not prefetch package provider 'chocolatey': undefined method `each' for nil:NilClass

Chocolatey is installed as a shared module on the puppet master. Below is the specific part of the puppet code that uses the chocolatey provider to install a custom package. class install_carbon { package {'carbon': ensure => '1.7', provider => 'chocolatey', } } This class is part of a

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

At first glance this all seems correct. Hrm. Can you do the telnet test? telnet puppet.internal 8081 Also, are you destroying and rebuilding these VM's each time and then its failing? Or are you doing all of this _after_ the vm's are launched. Its quite possible there is a race condition/orderin

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

Oh ... and lets see the output of: iptables -vnL Perhaps there is a firewall here? Its worth double checking. On Tue, Jun 17, 2014 at 11:06 AM, Ken Barber wrote: > At first glance this all seems correct. Hrm. > > Can you do the telnet test? > > telnet puppet.internal 8081 > > Also, are you dest

Re: [Puppet Users] Re: Moving from manifest files to ENC script - not working...

On Tuesday, June 17, 2014 8:19:59 AM UTC-5, shlo@gmail.com wrote: > > > I read the documentation. > I send yesterday example of my perl ENC code and the output. I'm sending > them again: > > #!/usr/bin/perl -w >> use strict; >> use YAML qw(Dump); >> >> my $hostname = s

Re: [Puppet Users] Chocolatey pre-fetch fails with Puppet - Could not prefetch package provider 'chocolatey': undefined method `each' for nil:NilClass

Let's make sure everything is set up correctly. Do you have chocolatey (the client tool) already installed on both of those servers? If so what versions of chocolatey? Do they both respond to output? (choco /?) Moving up the chain to the provider, let's execute puppet agent -td --verbose --trace

Re: [Puppet Users] No rubygem-deep-merge RPM in EL7 Yum repo

Hi Melissa, Somehow I screwed my Jira account :( I'll file a ticket as soon as I regain control of it. I don't get the reset password link so I contacted the admins. Shame on me ;) Marc On Tue, Jun 17, 2014 at 12:43 AM, Melissa Stone wrote: > Hey Marc, > > Thanks for reporting this! Could you

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

hi Ken, Right now I'm creating only one VM, co-locating PuppetMaster and PuppetDB to make it simple - destroying and rebuilding. But it always fails - during the provisioning/building and also even after if I login to the machine and run puppet apply. Telnet works fine: root@puppet:~# telnet p

Re: [Puppet Users] Chocolatey pre-fetch fails with Puppet - Could not prefetch package provider 'chocolatey': undefined method `each' for nil:NilClass

Hey Rob, Thanks for the response! Yes – chocolatey version 0.9.8.23 is installed on both servers (found via choco version). They both respond to choco /?. This is a customized version that has had the install path modified and the default repository restricted to an internal Nuget repository.

Re: [Puppet Users] Chocolatey pre-fetch fails with Puppet - Could not prefetch package provider 'chocolatey': undefined method `each' for nil:NilClass

Sorry if this is a duplicate – I tried to send earlier but it didn’t seem to hit the distro. = Hey Rob, Thanks for the response! Yes – chocolatey version 0.9.8.23 is installed on both servers (found via choco version). They b

Re: [Puppet Users] No rubygem-deep-merge RPM in EL7 Yum repo

Ok, back in control. Here it is: https://tickets.puppetlabs.com/browse/PUP-2797 Cheers, Marc On Tue, Jun 17, 2014 at 10:22 PM, Marc Villacorta wrote: > Hi Melissa, > > Somehow I screwed my Jira account :( > I'll file a ticket as soon as I regain control of it. > I don't get the reset password

Re: [Puppet Users] Chocolatey pre-fetch fails with Puppet - Could not prefetch package provider 'chocolatey': undefined method `each' for nil:NilClass

Sorry if this is a duplicate – I tried to send earlier but it didn’t seem to hit the distro. Also truncating it for readability = Hey Rob, Thanks for the response! Yes – chocolatey version 0.9.8.23 is installed on both serve

[Puppet Users] Puppet Certification Testing discount

To make it easier to get more of you certified, we are offering all Puppet users an automatic 50 percent discount on any Puppet certification, reducing the exam fee to $100 through August 31, 2014. Puppet certifications are available in two areas: - *Puppet Professional*: This certification va

[Puppet Users] Historical reporting, BI from puppetdb?

I use puppetdb + puppetboard, which are very useful to see the current state of my environment. Puppetboard also provides a very nice representation of each agent's most recent reports. However, I want to take it to the next level and create custom historical reports for business intelligence (

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

> Right now I'm creating only one VM, co-locating PuppetMaster and PuppetDB to > make it simple - destroying and rebuilding. But it always fails - during the > provisioning/building and also even after if I login to the machine and run > puppet apply. Telnet works fine: > >> root@puppet:~# telnet p

Re: [Puppet Users] Historical reporting, BI from puppetdb?

> I use puppetdb + puppetboard, which are very useful to see the current state > of my environment. Puppetboard also provides a very nice representation of > each agent's most recent reports. However, I want to take it to the next > level and create custom historical reports for business intelligen

Re: [Puppet Users] Historical reporting, BI from puppetdb?

You absolutely want to build that against the puppetdb rest interface and not by hitting postgres directly. I'd be interested in getting at this data as well, if you find a way or build a neat little application to do it. On Tue, Jun 17, 2014 at 3:35 PM, Ken Barber wrote: > > I use puppetdb +

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

It's very strange: Until I run puppetdb ssl-setup -f, I get *Error: Unable to connect to puppetdb server (puppet.internal:8081): [404] > Not Found* > but after that, I get Notice: Unable to connect to puppetdb server (puppet.internal:8081): > # > Since, I increased the timeout to 60, it chan

Re: [Puppet Users] Historical reporting, BI from puppetdb?

Thanks, good to know. While the REST API would be the method to get at the data, my issue is that I'm not capable of writing a web app + data repository that can generate web-based reports, etc. I've actually gotten into the habit of running one-off queries using the API with curl to get YAML-f

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

This is just after building a new server: 2014-06-17 23:20:05,246 INFO [p.t.s.w.jetty9-core] Removing buggy security > provider SunPKCS11-NSS version 1.7 > 2014-06-17 23:20:06,036 INFO [p.t.s.w.jetty9-service] Initializing web > server. > 2014-06-17 23:20:06,132 INFO [p.t.s.w.jetty9-service]

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

> It's very strange: Until I run puppetdb ssl-setup -f, I get >> >> Error: Unable to connect to puppetdb server (puppet.internal:8081): [404] >> Not Found > > but after that, I get > > >> Notice: Unable to connect to puppetdb server (puppet.internal:8081): >> # > > > > Since, I increased the timeou

Re: [Puppet Users] PuppetDB connection issue - Failed to connect!!

The puppetdb log is attached in the previous post. And, here is the curl output: root@puppet:~# curl > 'http://puppet.internal:8080/v2/metrics/mbean/java.lang:type=Memory' > { > "ObjectPendingFinalizationCount" : 0, > "HeapMemoryUsage" : { > "committed" : 86220800, > "init" : 805248

Re: [Puppet Users] dynamic hiera_config setting

On Wednesday, August 14, 2013 12:57:17 PM UTC+10, Henrik Lindberg wrote: > I was hoping that it would derive the hiera.yaml path dynamically from > > the clients' environment when it checks in, but this seems not to be the > > case. > > > That is correct, it does not do that. > - henrik >

Re: [Puppet Users] dynamic hiera_config setting

On Wednesday, June 18, 2014 10:47:20 AM UTC+10, Alex Harvey wrote: > > > I am also encountering this issue (puppet 3.3.1) - is it still a known > issue? > Ignore - I found the open Jira ticket here https://tickets.puppetlabs.com/browse/HI-46 -- You received this message because you are subscr

[Puppet Users] Re: Use external facts inside templetes

Hi Sans, My issue was solved. My actual key name was "portOffset". Note about the camel case. (there is a capital 'O'). What I did was changed it to just "portoffset" and works fine. Is this a issue ? Regards, Malintha Adikari On Tuesday, June 17, 2014 5:58:29 PM UTC+5:30, Sans wrote: > > Hi t

Re: [Puppet Users] Historical reporting, BI from puppetdb?

> Thanks, good to know. While the REST API would be the method to get at the > data, my issue is that I'm not capable of writing a web app + data > repository that can generate web-based reports, etc. I've actually gotten > into the habit of running one-off queries using the API with curl to get >

Re: [Puppet Users] Historical reporting, BI from puppetdb?

Sorry, do you mean Pentaho? On Tue, Jun 17, 2014 at 9:53 PM, Ken Barber wrote: >> Thanks, good to know. While the REST API would be the method to get at the >> data, my issue is that I'm not capable of writing a web app + data >> repository that can generate web-based reports, etc. I've actually

Re: [Puppet Users] Historical reporting, BI from puppetdb?

Ryan, What about something like this? http://wiki.pentaho.com/display/EAI/Rest+Client This page seems to mix in general actions with integration steps, but there are more integration types available here: http://wiki.pentaho.com/display/EAI/Pentaho+Data+Integration+Steps ken. On Tue, Jun 17,

Re: [Puppet Users] Historical reporting, BI from puppetdb?

And others: http://wiki.pentaho.com/display/EAI/JSON+Input http://wiki.pentaho.com/display/EAI/HTTP+Client Perhaps, you could combine the JSON input perhaps on the contents of a 'puppetdb export' tarball if you wanted to analyze the data from a previous backup :-). ken. On Tue, Jun 17, 2014 at

[Puppet Users] Re: "Connection timed out - connect(2)" when using puppet module

Am Dienstag, 17. Juni 2014 15:03:20 UTC+2 schrieb jcbollinger: > You mean you have set these in your puppet.conf or in your environment? > If the former then which one (file system path) and which section? Are you > running as root or as an unprivileged user? > I run at the moment with ro

Re: [Puppet Users] Re: Moving from manifest files to ENC script - not working...

*Thanks for the details response.* On Tuesday, June 17, 2014 10:28:01 PM UTC+3, jcbollinger wrote: Probably. Hooking up an ENC is not very hard. > > If the ENC is not running when a catalog request comes in then most likely > the ENC it is not properly configured. Supposing that you are runni

Re: [Puppet Users] Open puppet port(s) to the internet

It uses port 8140 and ssl. It is client cert authenticated. So, barring something like heartbleed, you're about as good as logging in to any website that uses ssl. On Jun 17, 2014 10:19 AM, "jmp242" wrote: > I probably don't really understand much about how puppet connects to the > clients, but i