Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [configuration-management]

Configuration Management refers to establishing and maintaining standardized system configurations within an organization. This tag encompasses the process of defining the configuration profiles, and the software used to manage and deploy it.

Configuration Management refers to establishing and maintaining standardized system configurations within an organization.

This tag encompasses the process of defining the configuration profiles, and the software used to manage and deploy it, such as , , and .

373 questions
6
votes
2 answers

Tips for optimizing RHEL/CentOS kickstart workflow

I'm working in an environment that consists of CentOS systems located in multiple data centers and office locations. I've been using a reasonable kickstart with a solid post-install script, but want to streamline and expand the process. We have our…
ewwhite
  • 197,159
  • 92
  • 443
  • 809
6
votes
4 answers

dead man's switch for remote networking interventions on Linux

As I'm going to change the network configuration of a remote server, I was thinking of some security mechanisms to protect me from accidentally losing control on the server. The level-0 protection I'm using is a scheduled system reboot: # at now+x…
ascobol
  • 288
  • 2
  • 14
5
votes
2 answers

Salt top.sls does not update on `salt-run fileserver.update` with gitfs

I have a single salt minion connected to the salt master. I recently renamed a large .sls from 'webserver.sls' to 'jetty.sls'. I use a gitfs backend with pygit2 and ssh. I have only enabled the gitfs backend. /etc/salt/master: fileserver_backend: #…
Groomblecom
  • 104
  • 7
5
votes
1 answer

How to remember/cache or specify private key passphrase for Ansible

Just starting out with Ansible, I have set up an Asible user on the client machine and created a set of keys from OpenSSL. I am running Ansible under my own account. I have specified the user and private key file in the Ansible configuration. I want…
ZZ9
  • 888
  • 3
  • 16
  • 47
5
votes
1 answer

Using /etc/services for in-house well-known ports

I couldn't find anything much about this, but I'm interested what are pros and cons (if any) in using /etc/services for in-house software? On my Linux distro (Ubuntu 14.04) at the end of /etc/services is a comment: # Local services hinting that it…
LavaScornedOven
  • 253
  • 2
  • 10
5
votes
2 answers

Is there a way to script the installation of System Center Configuration Manager updates listed in Software Center?

We have a very tight outage window and for many of our systems, the servers must be rebooted in the correct order. Because of this, I would like to script our updates. I have attempted to use this Powershell script found in the Microsoft Script…
Nathan Hartley
  • 1,660
  • 5
  • 26
  • 40
5
votes
2 answers

How to update grub with puppet?

I would like to change a line in /etc/default/grub with puppet to this: GRUB_CMDLINE_LINUX="cgroup_enable=memory" I've tried to used augeas which seems to do this magic: exec { "update_grub": command => "update-grub", refreshonly =>…
Tombart
  • 2,143
  • 3
  • 27
  • 48
5
votes
3 answers

Is there any strong, well tested and general purpose puppet recipes-base to be used as starting point for customization?

I have configured a working cobbler system that successfully handles my bare metal server deployment and I'm going to start the configuration management issues using puppet (integrating it as much as possible with cobbler of course). As it seems…
drAlberT
  • 10,949
  • 7
  • 39
  • 52
5
votes
2 answers

puppet fileserver serve non-module file

I'd like to server file which is located in /etc/puppet/files/key.pgp file { "/var/www/key.gpg": ensure => present, source => 'puppet:///files/key.gpg', } I'm getting this error: Not authorized to call find on…
Tombart
  • 2,143
  • 3
  • 27
  • 48
5
votes
2 answers

How can I automate a new linux server's initial setup?

Every time I setup a new server, I follow a series of steps on each server in order to get updates, set passwd, remove login via root user, customize a familiar environment (bashrc) and secure the server. Is it possible to do all that using a…
CommonCents
  • 163
  • 1
  • 4
5
votes
3 answers

how can I call ruby function basename in puppet

I'd like to call function File.basename which is available in Ruby. Is it possible in puppet? Something like: $filename = basename($download_url)
Tombart
  • 2,143
  • 3
  • 27
  • 48
5
votes
2 answers

How to configure rudder-agent?

When configuring rudder-agent, the doc says to fill policy_server.dat with the rudder-server hostname: echo 'rudder-server' > /var/rudder/cfengine-community/policy_server.dat Should i use preferably the fully qualified domain name (fqdn), or the…
themr0c
  • 51
  • 2
5
votes
3 answers

"Shutdown" in a show running configuration

When you see the word 'shutdown' in the output of a 'show running-config' command on a Cisco router... what does that exactly indicate? My basic assumption would be that it means that interface is shutdown and not operating. Is there more to it than…
Matree
  • 51
  • 2
5
votes
2 answers

Return from Chef recipe without rising an exception

Is there a way to return from Chef recipe without rising an exception? Say I have a long recipe. I want to add a ruby block to it's beginning which will check some condition (for example directory presence) and stop processing this recipe (but…
HUB
  • 6,630
  • 3
  • 23
  • 22
5
votes
5 answers

How do I (robustly) remotely execute tasks on Windows workstations in a domain?

I'm not even sure if "robustly" is a word. Anyway. Context: We have a few hundred Windows 7 workstations on a LAN. We use AD/GPO management pretty heavily, but there are a lot of periodic and/or manual maintenance tasks we need to do that can't be…
Zac B
  • 841
  • 1
  • 15
  • 27
1 2 3
24 25