Presentation is loading. Please wait.

Presentation is loading. Please wait.

Configuration Management

Published byGavin Mills Modified over 6 years ago

Similar presentations

Presentation on theme: "Configuration Management"— Presentation transcript:

1 Configuration Management
SaltStack Configuration Management with SaltStack Nathan Fish KWLUG CC-BY-SA 3.0

2 What is SaltStack? Configuration management tool
Like Ansible, Puppet, Chef, etc Python, Apache 2.0 License Created to fix gaps in Puppet

3 Why use Configuration Management?
Configuration in git Only backup user data Self-documenting

4 Installing Salt ‘salt-master’ pkg on 1 master
‘salt-minion’ pkg on all machines Including master Both are daemons

5 ‘salt-master’ listens ‘salt-minion’ connects to it Master pushes
Network Architecture ‘salt-master’ listens ‘salt-minion’ connects to it Master pushes Minion reads /etc/salt/minion config to get master hostname If not defined, “salt” Installing salt-minion and writing this file during PXE preseed works great /etc/salt/minion_id defines the minion’s id If not defined, the minion takes it’s FQDN and writes it there Minions trust & save the master’s key the first time Advantages of this architecture: Minions can be completely firewalled / NAT New minions automatically connect

6 Minion first run /etc/salt/: If ./minion_id doesn’t exist, FQDN
Create keypair in ./pki Read ./minion for master hostname Connect

7 Salt-key ‘salt-key’ tool on master Accept, delete, etc minion keys

8

9 Command Line salt <minion match> <module.function>
Defaults to Bash globs ‘test.ping’ is a Python function Executed on minion Generally to use Salt you will use the ‘salt’ command line tool.

10 Example Execution functions
system.reboot service.restart apache2 pkg.upgrade

11 “Idempotent” – safe to re-run *.sls, YAML format
States Config is declarative What we want, not how “Idempotent” – safe to re-run *.sls, YAML format

12 Example State A simple state that installs some handy packages
A *.sls file in your State tree can have 1 or more such States.

13 State Run Output

14 Assigns files to minions
The Top File ( top.sls ) YAML format Assigns files to minions

15 Example State Top

16 Pillar Also *.sls, YAML format Rendered by master into Python dict
Per minion Can set defaults and override them

17 Pillar Example

18 Jinja Templating language / preprocessor Not unique to Salt
Template config & *.sls files Salt supports other template languages

19 Example SLS with Jinja

20 Tips / Gotchas Keep in mind that some things run on master, some on minion When debugging, you can use ‘salt-call’ on the minion to get more output salt-master has root to all minions - be careful

21 Questions? I have some extras if we run out of questions

22 Grains Bits of data about a machine Shouldn’t change often
‘salt ‘*’ grains.ls’ ‘salt ‘*’ grains.get ipv4’

23 Key management Master hostname can be changed
Master key cannot (easily) If reinstalling minion, delete key from master first

24 LXC salt-run lxc.init <container> host=<host> template=<template> Autoaccept key

Download ppt "Configuration Management"

Similar presentations

Configuring APACS & AAN Controllers

Configuring APACS & AAN Controllers
IcePro www.sinfoni.fr Source Code Management Source code analysis Runtime analysis Application deployment Source code generation Multi sites Click ! IcePro.

IcePro Source Code Management Source code analysis Runtime analysis Application deployment Source code generation Multi sites Click ! IcePro.
Installing and maintaining clusters of FreeBSD servers using PXE and Rsync Cor Bosman XS4ALL

Installing and maintaining clusters of FreeBSD servers using PXE and Rsync Cor Bosman XS4ALL
UNIX ™ /Linux Overview Unix/IP Preparation Course June 9, 2013 Lusaka, Zambia.

UNIX ™ /Linux Overview Unix/IP Preparation Course June 9, 2013 Lusaka, Zambia.
Linux Operations and Administration

Linux Operations and Administration
Session 5: Working with MySQL iNET Academy Open Source Web Development.

Session 5: Working with MySQL iNET Academy Open Source Web Development.
PVM. PVM - What Is It? F Stands for: Parallel Virtual Machine F A software tool used to create and execute concurrent or parallel applications. F Operates.

PVM. PVM - What Is It? F Stands for: Parallel Virtual Machine F A software tool used to create and execute concurrent or parallel applications. F Operates.
Cloud Standard API and Contextualization

Cloud Standard API and Contextualization
Windows 2000 - OS and Application Management Chris Brew Rutherford Appleton Laboratory J-Lab, HEPiX/HEPNT 30/10/2000.

Windows OS and Application Management Chris Brew Rutherford Appleton Laboratory J-Lab, HEPiX/HEPNT 30/10/2000.
Linux+ Guide to Linux Certification Chapter Fifteen Linux Networking.

Linux+ Guide to Linux Certification Chapter Fifteen Linux Networking.
Linux+ Guide to Linux Certification, Second Edition Chapter 14 Network Configuration.

Linux+ Guide to Linux Certification, Second Edition Chapter 14 Network Configuration.
The Art and Zen of Managing Nagios with Puppet Michael Merideth - VictorOps

The Art and Zen of Managing Nagios with Puppet Michael Merideth - VictorOps
…using Git/Tortoise Git

…using Git/Tortoise Git
SWEN 302: AGILE METHODS Roma Klapaukh & Alex Potanin.

SWEN 302: AGILE METHODS Roma Klapaukh & Alex Potanin.
Copyright © 2002 Legato Systems, Inc. AlphaStor 3.1 Support in NW 7.3 1.0 Dan Gajanovic 2005.08.05 Legato Confidential.

Copyright © 2002 Legato Systems, Inc. AlphaStor 3.1 Support in NW Dan Gajanovic Legato Confidential.
Cisco Discovery Home and Small Business Networking Chapter 2 – Operating Systems Jeopardy Review Darren Shaver – Kubasaki High School – Okinawa, Japan.

Cisco Discovery Home and Small Business Networking Chapter 2 – Operating Systems Jeopardy Review Darren Shaver – Kubasaki High School – Okinawa, Japan.
Welcome to Azure App Services! Amie Seisay

Welcome to Azure App Services! Amie Seisay
Cyber Security Review, April 23-24, 2002, 0 Operated by the Southeastern Universities Research Association for the U.S. Depart. Of Energy Thomas Jefferson.

Cyber Security Review, April 23-24, 2002, 0 Operated by the Southeastern Universities Research Association for the U.S. Depart. Of Energy Thomas Jefferson.
Welcome to Azure App Services! Amie Seisay

Welcome to Azure App Services! Amie Seisay
TOPIC 7.0 LINUX SERVICES AND CONFIGURATION. ROOT USER Root user is called “super user” because it has power far beyond those of mortal user. As root,

TOPIC 7.0 LINUX SERVICES AND CONFIGURATION. ROOT USER Root user is called “super user” because it has power far beyond those of mortal user. As root,

Similar presentations

Ads by Google