DOCSLIB.ORG

Rudder 4.3 - User Manual I

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Rudder 4.3 - User Manual I Rudder 4.3 - User Manual i Rudder 4.3 - User Manual Rudder 4.3 - User Manual ii Copyright © 2011-2016 Normation SAS Rudder User Documentation by Normation is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License. Permissions beyond the scope of this license may be available at normation.com. Rudder 4.3 - User Manual iii COLLABORATORS TITLE : Rudder 4.3 - User Manual ACTION NAME DATE SIGNATURE WRITTEN BY Jonathan Clarke, Jan 2018 Nicolas Charles, Fabrice Flore-Thebault, Matthieu Cerda, Nicolas Perron, Arthur Anglade, Vincent Membré, and François Armand REVISION HISTORY NUMBER DATE DESCRIPTION NAME 4.3 Jan 2018 N Rudder 4.3 - User Manual iv Contents 1 Online version 1 2 Introduction 2 2.1 What is Rudder? . .2 2.1.1 Made for production environments . .3 2.1.2 Different roles for a better accessibility . .4 2.1.3 Universality . .5 2.2 Key Features . .6 2.2.1 OS independent target configuration state definition . .6 2.2.2 Centralize and aggregate real configuration states . .7 2.2.3 Automatic inventory . .8 2.2.4 REST API . .8 2.2.5 Audit trace and Change Requests . .8 2.2.6 Centralized authentication (LDAP, Active Directory, plugins) . .9 2.2.7 Extensibilty . 10 2.3 Technical architecture and software dependencies . 11 2.3.1 Functional architecture of Rudder . 11 2.3.2 Network architecture in client/server mode . 12 2.3.3 Agents . 13 3 Installation 14 3.1 Quick installation . 14 3.2 Requirements . 15 3.2.1 Networking . 15 3.2.1.1 DNS - Name resolution . 15 3.2.2 JVM Security Policy . 15 3.2.3 Fully supported Operating Systems . 15 3.2.3.1 For Rudder Nodes . 15 3.2.3.2 For Rudder Root Server . 16 3.2.4 Partially supported Operating Systems . 16 3.2.4.1 For Rudder Nodes . 17 Rudder 4.3 - User Manual v 3.2.4.2 For Rudder Root Server . 17 3.2.5 Cloud compatibility . 17 3.2.6 Hardware specifications for Rudder Agent . 17 3.2.7 Hardware specifications and sizing for Rudder Root Server . 17 3.2.7.1 Memory . 18 3.2.7.2 Disk . 18 3.3 Install Rudder Server . 18 3.3.1 Install Rudder Root server on Debian or Ubuntu . 19 3.3.1.1 Add the Rudder packages repository . 19 3.3.1.2 Install your Rudder Root Server . 19 3.3.2 Initial configuration of your Rudder Root Server . 19 3.3.3 Validate the installation . 20 3.3.4 Install Rudder Root server on SLES . 20 3.3.4.1 Configure the package manager . 20 3.3.4.2 Add the Rudder packages repository . 21 3.3.4.3 Install your Rudder Root Server . 21 3.3.5 Initial configuration of your Rudder Root Server . 21 3.3.6 Validate the installation . 22 3.3.7 Install Rudder Root server on RHEL-like systems . 22 3.3.7.1 Add the Rudder packages repository . 22 3.3.7.2 Install your Rudder Root Server . 22 3.3.8 Initial configuration of your Rudder Root Server . 23 3.3.9 Validate the installation . 23 3.4 Install Rudder Agent . 24 3.4.1 Install Rudder Agent on Debian or Ubuntu . 24 3.4.2 Install Rudder Agent on RHEL-like systems . 25 3.4.2.1 For RHEL/CentOS . 25 3.4.2.2 For Amazon Linux . 26 3.4.2.3 For Amazon Linux 2 . 26 3.4.3 Install Rudder Agent on SLES . 26 3.4.4 Configure and validate . 28 3.4.4.1 Configure Rudder Agent . 28 3.4.4.2 Validate new Node . 28 3.5 Install Rudder Relay (optional) . 28 3.5.1 On the relay . 29 3.5.2 On the root server . 29 3.5.3 Validation . 29 3.5.4 Adding nodes to a relay server . 30 Rudder 4.3 - User Manual vi 4 Upgrade 31 4.1 Upgrade notes . 31 4.1.1 Upgrade from Rudder 4.0 or older . 31 4.1.2 Upgrade from Rudder 4.1 or 4.2 . 31 4.1.3 Compatibility between Rudder agent 4.3 and older server versions . 31 4.1.3.1 4.1.x and 4.2.x servers . 31 4.1.3.2 Older servers . 31 4.1.4 Compatibility between Rudder server 4.3 and older agent versions . 31 4.1.4.1 4.1.x and 4.2.x agents . 31 4.1.4.2 Older agents . 32 4.1.5 Protocol for reporting . 32 4.2 On Debian or Ubuntu . 32 4.3 On RHEL or CentOS . ..
Load more

Recommended publications
  • Devops Interview Questions
    By OnlineInterviewQuestions.com Devops Interview Questions What is DevOps? DevOps is a one-stop solution for all software engineering. From creating the software to implementing it in real-time, DevOps does all. This creates an infinite demand for excellent DevOps developers in the market. Since the platform is quite fast and effective, it is attracting the attention of many organizations that are looking to develop a software solution for their own business. Thus, here are a few DevOps interview questions that can help you crack an interview in your dream organization and grow your career. Q1. What is DevOps ? DevOps is the term derived from Development and Operations. It is used in software engineering culture. It helps to perform the software operations and software developments. It provides a step-by-step process of software development. DevOps gives the clear process of software creation, testing, implementation and much more. It enhances the development frequency, makes short development cycle, and other for business activities. Q2. What are the advantages of DevOps ? There are various advantages that are offered by DevOps platform. The people gain many advantages with it. It reduces the risk of the problem and provides the possible solution in a simple way. It is more stable in the operating environments. It produces standard software delivery and adds value to the business. Q3. What are the anti-patterns of DevOps ? The pattern is the common practice followed by the organization. When others commonly adopt a pattern, it does not work for your business if you blindly follow it. Thus, it is necessary to look for anti-pattern.
    [Show full text]
  • Fujitsu and Red Hat's Integrated Solution to Enable Hybrid Cloud and Digital Transformation
    IDC Partner Spotlight Sponsored by: Red Hat Authors: Michael Ceroici Archana Venkatraman Fujitsu and Red Hat's Integrated Solution to Enable Hybrid Cloud and Digital Transformation January 2020 IDC Opinion Digital Transformation (DX) is crucial for survival in an age when customer experiences can make or break brands. Enterprises are executing on digital business initiatives to enhance customer insights, improve business processes or launch new services – all with an aim to improve customer satisfaction. DX strategy must be supported with a mature, agnostic, software-defined yet hardware-assisted and agile infrastructure. Such a future-ready architecture will not just make DX initiatives cost-effective and reliable, but also help enterprises limit the risks of proprietary lock-in and give them the flexibility to move data and applications as their business or governance needs demand. In our opinion, integrated systems, particularly with an open source ethos, can help enterprises to build a hybrid cloud and eliminate many complexities through a single support contract and a validated, unified infrastructure. Already, Linux and an accompanying stack of open source infrastructure software is emerging as the future of compute infrastructure, particularly for public cloud (growing at 13.9% CAGR to 2020). Most of the hyperscale datacenters or the largest public cloud infrastructure are built on a foundation of Linux. At the same time, paid Linux is steadily gaining a foothold in commercial accounts. Linux is becoming the de facto standard for a substantial portion — potentially the majority — of cloud native applications that will be built in the next decade. We believe that integrated, software-defined cloud solutions with mature open source integration will further grow in popularity as a foundation for DX.
    [Show full text]
  • Gestion Automatique Des Configurations Réseaux: Une
    THÈSE PRÉSENTÉE À L’UNIVERSITÉ DU QUÉBEC À CHICOUTIMI COMME EXIGENCE PARTIELLE DU DOCTORAT EN INFORMATIQUE PAR ÉRIC LUNAUD NGOUPÉ GESTION AUTOMATIQUE DES CONFIGURATIONS RÉSEAUX: UNE APPROCHE DÉDUCTIVE JUIN 2015 TABLE DES MATIÈRES Table des matières i Table des figures iii Liste des tableaux v Résumé 1 Introduction 3 1 La gestion des configurations 7 1.1 Évènements de l’actualité . 7 1.2 Les enjeux . 11 1.3 Qu’est-ce qu’une configuration ? . 14 1.4 Causes . 22 1.5 Conséquences des erreurs de configuration . 24 2 État de l’art en gestion des configurations 31 2.1 Approches actuelles dans la gestion des configurations réseau et de leur intégrité . 33 2.2 Protocoles de gestion . 40 2.3 La Gestion automatisée . 59 2.4 Outils de gestion automatisée de configuration . 61 2.5 Lacunes observées . 83 3 Modèle de configuration générique (Meta-CLI) 87 3.1 Gestion des dispositifs réseau . 88 3.2 Modèle formel de configurations de périphériques réseaux . 93 3.3 Mise en œuvre et expérimentation . 98 4 Comment optimiser la récupération de la configuration : Virtualisa- tion et évaluation Sélective 107 4.1 Vers une virtualisation sémantique des Configurations . 108 4.2 Exactitude de configuration d’un dispositif de réseau . 121 ii 4.3 évaluation sélective des contraintes de configuration . 124 4.4 Expérimentation . 135 Conclusion Générale 140 Annexes 144 Bibliographie 153 TABLE DES FIGURES 1.1 Fichier de configuration Version 11 de l’IOS Cisco . 17 1.2 Fichier de configuration d’OpenVPN . 20 1.3 Interface utilisant une adresse IP fixe . 21 1.4 Interface utilisant DHCP .
    [Show full text]
  • SKF Maintenance and Lubrication Products Extending the Bearing Life Cycle
    SKF Maintenance and Lubrication Products Extending the Bearing Life Cycle Dismounting Buy a bearing Basic condition Mounting monitoring Alignment Lubrication Mounting and dismounting Mechanical tools 10 Heating tools 40 Hydraulic tools 56 Instruments Alignment 80 Basic condition monitoring 100 Lubrication Lubricants 128 Automatic grease dispensing tools 158 Manual grease dispensing tools 172 Accessories 180 SKF Maintenance and Lubrication Products Oil inspection and dispensing 181 Our mission is to maximize our customer bearing Storage tools 184 performance through effective lubrication and Lubrication analysis tools 186 maintenance solutions. Lubrication software 188 The SKF Bearing Life Cycle Help your bearing achieve its maximum service life Every bearing has a certain service life potential. However, research has shown that, for various reasons, not every bearing achieves it. Important stages which have a major impact on a bearing service life can be recognised during the bearing’s lifecycle. These stages are mounting, lubrication, alignment, basic condition monitoring and dismounting. The stages in a bearing life cycle are extremely important for achieving the maximum service life of the bearing. By applying the right maintenance practices and using the correct tools, you can considerably extend your bearing’s service life and increase plant productivity and efficiency. Mounting Lubrication Includes mechanical fitting tools, Includes bearing greases, manual and induction heaters and hydraulic automatic lubricators and lubrication equipment accessories Mounting is one of the critical stages of the bearing’s lifecycle. If the Correct bearing lubrication is an essential step in reaching the bearing’s bearing is not mounted properly using the correct method and tools, the service lifetime.
    [Show full text]
  • Configuration Management How To
    HOW TO AUTOMATE CONFIGURATION MANAGEMENT ON AIX SYSTEMS ? CONFIGURATION MANAGEMENT FOR AIX AIX is and has always been very strong in virtualization and partitionning (LPAR, and then WPAR), offering a robust and stable plateform for critical services. Now that DevOps is gaining momentum, many tools are available to automate Linux and Windows systems, manage their configuration, orchestrate containers, etc. However, there are not that many tools to manage the AIX systems, even though there are often a lot of them to manage, given the ease of partitionning in AIX. Once a Logical or Workload Partition has been Among the few available tools to manage AIX, there is created, user accounts and permission have to be Chef, who release an AIX agent at the end of 2014, configured, network parameters are to be set and CFEngine, who always supported AIX, and (like DNS), system need to be configured Rudder, which suports AIX since mid-2014 (timezone, mountpoint, log centralization, monitoring, etc), and finally services need to be These tools deal with every aspect of the deploy. configuration management on AIX; with some These configurations not only need to be differences. Only Chef and Rudder offer a performed at initialisation, but maintained during comprehensive inventory of the system, Chef and all the life of the systems (users may come and CFEngine both need to code the configuration of the go, parameters may change, new version of the system, and only Rudder come with a Web interface services may be released, etc..) for configuration. To fully benefit from automation and manage all your systems alike, the choice of the right solution for your needs is important.
    [Show full text]
  • Devops Leader® Exam Study Guide Devops Institute’S SKIL Framework
    DevOps Leader® Exam Study Guide DevOps Institute’s SKIL Framework DevOps Institute is dedicated to advancing the human elements of DevOps success through our human-centered SKIL framework of Skills, Knowledge, Ideas and Learning. We develop, accredit and orchestrate SKIL through certifications, research, learning opportunities, events and community connections. Visit the SM at www.devopsinstitute.com to learn more. Join Us! Become a member and join the fastest growing global community of DevOps practitioners and professionals. The DevOps Institute continuous learning community is your go-to hub for all things DevOps, so get ready to learn, engage, and inspire. Visit https: www.devopsinstitute.com/become-a-community-member to join today. You belong. DevOps Institute is dedicated to advancing the human elements of DevOps success. We fulfill our mission through our SKIL framework of Skills, Knowledge, Ideas and Learning. Certification is one means of showcasing your skills. While we strongly support formal training as the best learning experience and method for certification preparation, DevOps Institute also recognizes that humans learn in different ways from different resources and experiences. As the defacto certification body for DevOps, DevOps Institute has now removed the barrier to certification by removing formal training prerequisites and opening our testing program to anyone who believes that they have the topical knowledge and experience to pass one or more of our certification exams. This examination study guide will help test-takers prepare by defining the scope of the exam and includes the following: ● Course Description ● Examination Requirements ● DevOps Glossary of Terms ● Value Added Resources ● Sample Exam(s) with Answer Key These assets provide a guideline for the topics, concepts, vocabulary and definitions that the exam candidate is expected to know and understand in order to pass the exam.
    [Show full text]
  • U.S. Government Publishing Office Style Manual
    Style Manual An official guide to the form and style of Federal Government publishing | 2016 Keeping America Informed | OFFICIAL | DIGITAL | SECURE [email protected] Production and Distribution Notes This publication was typeset electronically using Helvetica and Minion Pro typefaces. It was printed using vegetable oil-based ink on recycled paper containing 30% post consumer waste. The GPO Style Manual will be distributed to libraries in the Federal Depository Library Program. To find a depository library near you, please go to the Federal depository library directory at http://catalog.gpo.gov/fdlpdir/public.jsp. The electronic text of this publication is available for public use free of charge at https://www.govinfo.gov/gpo-style-manual. Library of Congress Cataloging-in-Publication Data Names: United States. Government Publishing Office, author. Title: Style manual : an official guide to the form and style of federal government publications / U.S. Government Publishing Office. Other titles: Official guide to the form and style of federal government publications | Also known as: GPO style manual Description: 2016; official U.S. Government edition. | Washington, DC : U.S. Government Publishing Office, 2016. | Includes index. Identifiers: LCCN 2016055634| ISBN 9780160936029 (cloth) | ISBN 0160936020 (cloth) | ISBN 9780160936012 (paper) | ISBN 0160936012 (paper) Subjects: LCSH: Printing—United States—Style manuals. | Printing, Public—United States—Handbooks, manuals, etc. | Publishers and publishing—United States—Handbooks, manuals, etc. | Authorship—Style manuals. | Editing—Handbooks, manuals, etc. Classification: LCC Z253 .U58 2016 | DDC 808/.02—dc23 | SUDOC GP 1.23/4:ST 9/2016 LC record available at https://lccn.loc.gov/2016055634 Use of ISBN Prefix This is the official U.S.
    [Show full text]
  • Network Automation Journey
    Network Automation Journey A systems engineer NetOps perspective Walid Shaari FOSDEM 2018 @walidshaari 4th February 2018 https://www.linkedin.com/in/walidshaari Brussels background image credit: https://commons.wikimedia.org/wiki/File:Social_Network_Analysis_Visualization.png Walid Shaari @walidshaari https://www.linkedin.com/in/walidshaari ● System engineer supporting HPC Linux clusters ● Configuration management evaluation and deployment project in 2014 ● Advocating open source, automation, containers and Kubernetes ● Husband and father of 3 lovely kids ● Last 3 months in short work assignment with Network management team Incentives • Open source and standards • Pure Layer 3 network implementation • Lightweight IP to IP encapsulation • Policy based secure networking • Scalable and simple • Scale out SDN controller • Openstack , Docker, Kubernetes, Mesos and CNI “In 2018, we will see more demands placed on the continuous delivery of changes to networking setups due to pressure from containerisation, distributed systems, and security needs. Thus, networking must become as flexible and automation-friendly as the software that runs over it, and become less of a bottleneck.” Nigel Kersten, Chief Technical Strategist at Puppet https://www.itproportal.com/features/what-do-organisations-need-to-prepare-for-in-2018/ How to build an event driven, dynamically reconfigurable microservices platform by Sven Beauprez: https://www.youtube.com/watch?time_continue=388&v=1D8hyLWMtfM Enterprise Network management trends Intent Based Networking Event Driven
    [Show full text]
  • Linux Journal | November 2017 | Issue
    ™ TIPS FOR USING THE HIGH-SECURITY Qubes Desktop NOVEMBER 2017 | ISSUE 283 Since 1994: The Original Magazine of the Linux Community http://www.linuxjournal.com Control a A LOOK AT ANSIBLE’S Heterogeneous ROLES Server Farm FEATURE with SSH Agent + Launching External Processes in Python Produce Readable Shell Scripts and Solve Deploy Equations WATCH: Instant Clusters ISSUE OVERVIEW in the Cloud V LJ283-Nov2017.indd 1 10/19/17 2:18 PM NEW! Deploying An Architect’s Kubernetes Guide: Linux with Security in the Age Practical books and Compliance of Containers in Mind Author: Author: Sol Lederman for the most technical Petros Koutoupis Sponsor: Sponsor: SUSE people on the planet. Twistlock SQL Server Managing on Linux Container Author: Security and Reuven M. Lerner Compliance GEEK GUIDES Sponsor: in Docker SUSE Author: Petros Koutoupis Sponsor: Twistlock Harnessing DevOps for the Power the Rest of Us of the Cloud Author: with SUSE John S. Tonello Author: Sponsor: Petros Koutoupis Puppet Sponsor: SUSE Download books for free with a An Memory: Past, simple one-time registration. Architect’s Present and Guide: Future—and Linux for the Tools to http://geekguide.linuxjournal.com Enterprise IT Optimize It Author: Author: Sol Lederman Petros Koutoupis Sponsor: Sponsor: SUSE Intel LJ283-Nov2017.indd 2 10/19/17 2:18 PM NEW! Deploying An Architect’s Kubernetes Guide: Linux with Security in the Age Practical books and Compliance of Containers in Mind Author: Author: Sol Lederman for the most technical Petros Koutoupis Sponsor: Sponsor: SUSE people on the planet. Twistlock SQL Server Managing on Linux Container Author: Security and Reuven M.
    [Show full text]
  • Curriculum Vitae
    Curriculum Vitae Table of Contents SENIOR CLOUD INFRASTRUCTURE ARCHITECT . 1 Personal Details. 2 . 2 What I can do TECHNOLOGIES . 2 EXPERIENCE . 3 Technical Writer (Red Hat, remote) since 2019 . 3 Cloud Infrastructure Architect (Stylelabs, Cloud software editor, Brussels, Belgium) 2017- 2019 . 3 Senior Devops (Emakina, Digital agency, Brussels, Belgium) 2015-2017 . 3 . 3 Linux System Administrator (Antidot, Web software editor, Brussels, Belgium) 2012-2015 Technical Writer for Rudder project (Normation, Paris, remote) 2011 . 4 . 4 Opensource consultant (Inuits, Antwerp, IT services, Belgium) 2010-2011 . 4 Linux System Administrator (Mediaxim, Medias monitoring, Brussels, Belgium) 2010 . 4 System Administrator (Emakina, Brussels, Belgium) 2008-2009 . 4 System Administrator (FIJ Saint-Gilles, Training Center, Brussels, Belgium) 2007 . 5 System Administrator (Instituts Saint-Luc, Art school, Brussels, Belgium) 2006-2007 Opensource contributions . 5 EDUCATION & CERTIFICATIONS . 5 Languages. 5 Interests . 6 Recommendations . 6 SENIOR CLOUD INFRASTRUCTURE ARCHITECT 1 Personal Details Fabrice Flore-Thébault [email protected] Brussels, Belgium Driving license 43 https://github.com/themr0c https://linkedin.com/in/fabriceflorethebault https://www.slideshare.net/themr0c/presentations What I can do I am a senior cloud infrastructure architect with an advanced experience of Ansible and Linux. I have a good knowledge of asciidoc and YAML and some other languages. I can understand or design complex infrastructure and like to trace issues. I’m also curious
    [Show full text]
  • To Be Able to Centrally and Safely Manage the Configurations of All of Their Linux Systems Around the World, the Concern Initiat
    To be able to centrally and safely manage the configurations of all of their Linux systems around the world, the concern initiated a project to select and implement a new solution for configuration and package management. The aim was to standardize the worldwide UNIX/Linux infrastructure and ensure compliance with security and IT policies. In addition to basic configuration, the tool was intended to allow installation, upgrades and downgrades of packages from centrally managed repositories. The company awarded matrix technology AG with the ​ contract for selection and implementation of the solution in the existing tool environment. The Munich-based IT service provider is currently providing the worldwide administration of the UNIX systems, including change coordination. It had already earned a good reputation with the client through various previous projects in the areas of IT infrastructure operations and management. Challenge The client‘s high demands with regard to: ● Security ● Multi-client capability ● Configuration concept ● Rollout ● Granularity ● Connection to external data sources ● Scalability ● Package management Solution For the project, matrix technology AG implemented the new configuration and package management tool in ​ ​ five steps: Approach First, a functional concept was prepared that described the requested scope of services in detail. It defined the following functional areas: ● Configuration of the OS base For example, editing of config files, configuration of settings for the operating system kernel, generation
    [Show full text]
  • An Industry-Based Study on the Efficiency Benefits of Utilising Public Cloud Infrastructure and Infrastructure As Code Tools in the IT Environment Creation Process
    Munster Technological University SWORD - South West Open Research Deposit Masters Science 5-2018 An Industry-Based Study on the Efficiency Benefits of Utilising Public Cloud Infrastructure and Infrastructure as Code Tools in the IT Environment Creation Process Shane Callanan Department of Computer Science, Cork Institute of Technology Follow this and additional works at: https://sword.cit.ie/scimas Part of the OS and Networks Commons Recommended Citation Callanan, Shane, "An Industry-Based Study on the Efficiency Benefits of Utilising Public Cloud Infrastructure and Infrastructure as Code Tools in the IT Environment Creation Process" (2018). Masters [online]. Available at: https://sword.cit.ie/scimas/5 This Master Thesis is brought to you for free and open access by the Science at SWORD - South West Open Research Deposit. It has been accepted for inclusion in Masters by an authorized administrator of SWORD - South West Open Research Deposit. For more information, please contact [email protected]. An industry-based study on the efficiency benefits of utilising public cloud infrastructure and infrastructure as code tools in the IT environment creation process by Shane Callanan This thesis has been submitted in fulfilment for the degree of Masters of Science in Cloud Computing in the Department of Computer Science Cork Institute of Technology May 2018 This thesis is dedicated to Orla Leahy Declaration I, Shane Callanan, declare that this thesis titled, ‘An industry-based study on the efficiency benefits of utilising public cloud infrastructure and infrastructure as code tools in the IT environment creation process’ and the work presented in it are my own. I confirm that: This work done wholly or mainly while in candidature for a postgraduate master’s degree at Cork Institute of Technology.
    [Show full text]