Puppet系统安装运维手册.doc_第1页
Puppet系统安装运维手册.doc_第2页
Puppet系统安装运维手册.doc_第3页
Puppet系统安装运维手册.doc_第4页
Puppet系统安装运维手册.doc_第5页
已阅读5页,还剩6页未读 继续免费阅读

下载本文档

版权说明:本文档由用户提供并上传,收益归属内容提供方,若内容存在侵权,请进行举报或认领

文档简介

Puppet系统安装运维手册1安装配置11.1版本信息11.2服务器安装11.2.1锁定YUM安装版本(如果需要安装旧版)11.2.2安装配置Puppet-server11.2.3安装Foreman21.3客户端安装52管理服务52.1Puppet-Server52.2Foreman52.3Foreman-Proxy53修改记录61 安装配置1.1 版本信息 操作系统: CentOS5.X 64bit1.2 服务器安装1.2.1 锁定YUM安装版本(如果需要安装旧版) 安装yum-versionlockyum install yum-versionlock 编辑/etc/yum/pluginconf.d/versionlock.listpuppet 2.7.20puppet-server .2 安装配置Puppet-server 安装rpm Uvh /pub/epel/5/x86_64/epel-release-5-4.noarch.rpmrpm Uvh http:/ /el/5/products/x86_64/puppetlabs-release-5-6.noarch.rpmyum -y install gcc gcc-c+ libstdc+-develyum install puppet-server (旧版安装yum install puppet-server-2.7.20) 编辑/etc/puppet/auth.confpath /runauth anymethod saveallow * 增加/etc/puppet/autosign.conf* 编辑/etc/puppet/fileserver.conffiles path /var/lib/puppet/files allow * 编辑/etc/puppet/puppet.confmain # The Puppet log directory. # The default value is $vardir/log. logdir = /var/log/puppet # Where Puppet PID files are kept. # The default value is $vardir/run. rundir = /var/run/puppet # Where SSL certificates are kept. # The default value is $confdir/ssl. ssldir = $vardir/ssl vardir=/var/lib/puppet ssldir=/var/lib/puppet/ssl factpath=/var/lib/puppet/lib/facter templatedir=/etc/puppet/templates hostcert = $vardir/ssl/certs/puppet.pem certdir = $vardir/ssl/certsmaster reports = log,foreman certname=puppet-test-02 #服务器名 autosign=true autosign = /etc/puppet/autosign.conf 修改/etc/hosts88 test-01 server #服务端ip地址,名称172.17.30.xxx xxxx xxxx #客户端ip地址,名称1.2.3 安装Foreman 安装Mysql-Serveryum install mysql-server mysqlchkconfig -add mysqldchkconfig -level 235 mysqld onservice mysqld start 创建数据库mysql uroot pCREATE DATABASE foreman CHARACTER SET utf8;CREATE USER foremanlocalhost IDENTIFIED BY foreman;GRANT ALL PRIVILEGES ON foreman.* TO foremanlocalhost; 安装foremanrpm Uvh /releases/1.0/el5/foreman-release.rpmyuminstallpostgresql-develyuminstalllibvirt-develyum install foreman 修改/usr/share/foreman/config/ database.ymlproduction: adapter: mysql database: foreman username: foreman password: foreman encoding: utf8 将补丁复制到usr/share/foreman/并替换相应文件vi/usr/lib/ruby/site_ruby/1.8/puppet/reports/foreman.rb#copythisfiletoyourreportdir-e.g./usr/lib/ruby/1.8/puppet/reports/#addthisreportinyourpuppetmasterreports-e.g,inyourpuppet.confadd:#reports=log,foreman#(oranyotherreportsyouwant)#URLofyourForemaninstallation#$foreman_url=$foreman_url=:3000/requirepuppetrequirenet/httprequireuriPuppet:Reports.register_report(:foreman)doPuppet.settings.use(:reporting)descSendsreportsdirectlytoForemandefprocessbeginuri=URI.parse($foreman_url)http=Net:HTTP.new(uri.host,uri.port)ifuri.scheme=httpsthenhttp.use_ssl=truehttp.verify_mode=OpenSSL:SSL:VERIFY_NONEendreq=Net:HTTP:Post.new(/reports/create?format=yml)req.set_form_data(report=to_yaml)response=http.request(req)rescueException=eraisePuppet:Error,CouldnotsendreporttoForemanat#$foreman_url/reports/create?format=yml:#eendendendcd /usr/share/foreman/bundle installbundle install -without development test postgresql libvirt sqlitegem install activerecord-mysql2-adapterRAILS_ENV=productionrakedb:migratescript/rails s -p 3000 -e production -d 初始化admin口令cd /usr/share/foreman# RAILS_ENV=production rake permissions:reset编辑/usr/share/foreman/config/setting.yaml:puppet_server: #修改为你的puppetmaster:login: false #改为trueforeman web 打开setting那个页面,重启foreman,进入My account 修改密码 安装foreman-proxyyum install foreman-proxy编辑/etc/foreman-proxy/settings.yml:puppetca: true:puppet: true:puppet_conf: /etc/puppet/puppet.conf 修改 visudo 配置信息visudoDefaults:foreman-proxy !requirettyforeman-proxy ALL = NOPASSWD: /usr/bin/puppetforeman-proxy ALL = NOPASSWD: /usr/bin/puppet cert * 编辑/usr/share/foreman-proxy/lib/puppetca_api.rb第6行log_halt 406, Failed to list certificates: #e: #e.backtrace.join(n) 配置foreman-proxy到foreman登录foreman,右侧moreSmart-Proxies菜单中新增proxy,name:puppet-master主机名url:http:/ puppet-master:84431.3 客户端安装1.3.1 Puppet-clinet客户端安装l 说明,目前升级文件中不能有文件名不能有中文 客户端系统为Windows Server 2003,双击puppet-3.0.1.msi进行安装 双击ruby186-27_rc2.exe进行ruby的安装l若运行期间,报此错误,安装Microsoft .NET Framework 2.0 SP1 配置host文件9 client-020 puppet-test-02 添加文件auth.conf,fileserver.conf与namespaceauth.conf 配置puppet.conf,将里面的内容替换为main # The Puppet log directory. # The default value is $vardir/log. #logdir = /var/log/puppet # Where Puppet PID files are kept. # The default value is $vardir/run. #rundir = /var/run/puppet # Where SSL certificates are kept. # The default value is $confdir/ssl. ssldir = $vardir/ssl pluginsync=trueagent # The file in which puppetd stores a list of the classes # associated with the retrieved configuratiion. Can be loaded in # the separate puppet executable using the -loadclasses # option. # The default value is $confdir/classes.txt. classfile = $vardir/classes.txt listen = true runinterval = 60 # Where puppetd caches the local configuration. An # extension indicating the cache format is added automatically. # The default value is $confdir/localconfig. localconfig = $vardir/localconfig server = puppet-test-02 如果是第一次进行ssl匹配,运行命令,此命令需要在C:Program FilesPuppet LabsPuppetbin目录下。C:Program FilesPuppet LabsPuppetbinpuppet agent -test -server puppet-test-02 由于在master上面配置了自动签名,见master配置标红处,所以只需要运行上面的命令。 在运行链接时报下面的错误,这种情况是由于前面已经签名过,进行第二次的签名。l 在master端,执行命令puppet cert clenn client-02l 在client端,删除文件client-02.pem Cmd-services.msc-停止 puppet agent服务,并将服务设置为手动 添加随机启动文件runpuppet.bat到:C:Program FilesPuppet LabsPuppetbin,并将该文件添加到系统计划任务中,设置为随系统启动执行。 Puppet client文件以及脚本列表l 在C:XspeedRunStop目录下新建文件夹bakl 在C:XspeedRunStop目录下新建文件夹TranFilel 将BatchStart.bat, BatchStop.bat,chmode.bat,ProVersion.bat, ProVersion.jar,StartStop.jar拷贝至文件C:XspeedRunStopl 将copy.bat拷贝至C:XspeedRunStopbak 将home.rb文件拷贝至C:Program Fi
人人文库> 全部分类> 教育资料 > 课件下载

温馨提示

  • 1. 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。图纸软件为CAD,CAXA,PROE,UG,SolidWorks等.压缩文件请下载最新的WinRAR软件解压。
  • 2. 本站的文档不包含任何第三方提供的附件图纸等,如果需要附件,请联系上传者。文件的所有权益归上传用户所有。
  • 3. 本站RAR压缩包中若带图纸,网页内容里面会有图纸预览,若没有图纸预览就没有图纸。
  • 4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
  • 5. 人人文库网仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对用户上传分享的文档内容本身不做任何修改或编辑,并不能对任何下载内容负责。
  • 6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
  • 7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。

最新文档

评论

0/150

提交评论