Versions Compared

Old Version 2

changes.mady.by.user Eigil Obrestad

Saved on

compared with

New Version 3

changes.mady.by.user Eigil Obrestad

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

This article describes the steps needed to install the bootstrap-role onto a freshly installed server running ubuntu.

Installation

Install puppet

...

Download and install the puppet5 deb for your distro from here: https://apt.puppet.com/, and install the puppetserver.

Code Block
titleInstall puppet
root@bootstrap:~# wget https://apt.puppet.com/puppet5-release-xenial.deb
root@bootstrap:~# dpkg -i puppet5-release-xenial.deb 
root@bootstrap:~# apt-get update
  ...
Get:5 http://apt.puppetlabs.com xenial InRelease               
Get:6 http://apt.puppetlabs.com xenial Release [76.0 kB]
Get:7 http://apt.puppetlabs.com xenial Release.gpg [836 B]
Get:8 http://apt.puppetlabs.com xenial/puppet5 amd64 Packages [6,884 B]
Get:9 http://apt.puppetlabs.com xenial/puppet5 i386 Packages [6,068 B]
Get:10 http://apt.puppetlabs.com xenial/puppet5 all Packages [3,521 B]
Fetched 93.3 kB in 0s (108 kB/s)       
Reading package lists... Done
root@bootstrap:~# apt-get install puppetserver

The bootstrap needs a certificate which is valid for its own name, in addition to the names for the puppetserver and puppetdb role. Add these names to /etc/puppetlabs/puppet/puppet.conf before you run the puppetagent which generates these certificates. Run puppet using the bootstrap-machine as master. Verify that the SSL certificates generated includes the puppet and puppetdb alt names.

Code Block
titlePuppet SSL certificates
root@bootstrap:~# vim /etc/puppetlabs/puppet/puppet.conf
root@bootstrap:~# tail -n 2 /etc/puppetlabs/puppet/puppet.conf
[main]
dns_alt_names = puppet.skyhigh.iik.ntnu.no,puppetdb.skyhigh.iik.ntnu.no
root@bootstrap:~# grep puppet /etc/hosts
10.212.128.9	bootstrap.infra.skyhigh.iik.ntnu.no	bootstrap puppet puppetdb
 
root@bootstrap:~# systemctl start puppetserver
root@bootstrap:~# puppet agent --test --server bootstrap.infra.skyhigh.iik.ntnu.no
 ...
Notice: Applied catalog in 0.01 seconds
root@bootstrap:~# puppet cert list --all
+ "bootstrap.infra.skyhigh.iik.ntnu.no" (SHA256) A3:C1:1C:BF:49:C3:2E:9F:97:3F:0A:B9:CB:76:44:B2:74:7F:BB:B9:3E:62:3E:8F:88:1F:62:E0:F1:35:E0:E8 (alt names: "DNS:bootstrap.infra.skyhigh.iik.ntnu.no", "DNS:puppet.skyhigh.iik.ntnu.no", "DNS:puppetdb.skyhigh.iik.ntnu.no")

Install r10k

At this point there are a working puppet infrastructure in place. Next up is installing and configuring r10k, and deploying your first environment. In this example the environment "infrastructure" is deployed:

Code Block
titlePuppet SSL certificates
root@bootstrap:~# /opt/puppetlabs/puppet/bin/gem install r10k
root@bootstrap:~# mkdir /etc/puppetlabs/r10k
root@bootstrap:~# vim /etc/puppetlabs/r10k/r10k.yaml
root@bootstrap:~# cat /etc/puppetlabs/r10k/r10k.yaml
---
:cachedir: /opt/puppetlabs/puppet/cache/r10k
:sources:
  puppet:
    basedir: /etc/puppetlabs/code/environments
    remote: https://github.com/ntnusky/r10k.git
root@bootstrap:~# /opt/puppetlabs/puppet/bin/r10k deploy environment infrastructure -pv