...
Key | Description | Example | Created by | Data-type | Datafile: | Used by: |
---|---|---|---|---|---|---|
profile::dns::<shortname>::key | The TSIG key used for updates sent to this server. It can be useful to let this be a hiera-lookup for the zones managed by our own DNS servers. | 'UvetjoX5zMiw/NbQr3biug==' "%{hiera('profile::dns::key::update')}" | dnssec-keygen -a HMAC-MD5 -b 128 -n HOST <keyname> | String | common.yaml | role::bootstrap, role::dashboard |
...
Key | Description | Example | Created by | Data-type | Datafile: | Used by: |
---|---|---|---|---|---|---|
profile::pxe::images | A list over image short-names (ID's used to identify images later). | - '1604amd64' | N/A | List of strings | common.yaml | role::bootstrap, role::dhcp |
profile::pxe::<shortname>::name | A descriptive name of the specific image | 'Ubuntu 16.04 Server amd64' | N/A | String | common.yaml | role::bootstrap, role::dhcp |
profile::pxe::<shortname>::kernel | A URL to the kernel of the specific OS | 'http://archive.ubuntu.com/ubuntu/dists/xenial-proposed/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64/linux' | N/A | String | common.yaml | role::bootstrap, role::dhcp |
profile::pxe::<shortname>::initrd | A URL to the initrd image of the specific OS | 'http://archive.ubuntu.com/ubuntu/dists/xenial-proposed/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64/initrd.gz' | N/A | String | common.yaml | role::bootstrap, role::dhcp |
...
Key | Description | Example | Created by | Data-type | Datafile: | Used by: |
---|---|---|---|---|---|---|
profile::dhcp::omapi::key | The omapi key used to update the DHCP servers | 'omapi_key==' | dnssec-keygen -r /dev/urandom -a HMAC-MD5 -b 512 -n HOST key_name | String | common.yaml | role::bootstrap, role::dashboard, role::dhcp |
profile::dhcp::omapi::name | The omapi key name | 'key_name' | ↑ | String | common.yaml | role::bootstrap, role::dashboard, role::dhcp |
profile::dhcp::searchdomain | The default search-domain handed to DHCP clients | 'cloud.domain.com' | N/A | String | common.yaml | role::bootstrap, role::dhcp |
profile::dns::resolvers | The DNS resolvers for clients to use | - '<ip-addres-DNS1>' - '<ip-address-DNS2>' | N/A | List of strings | common.yaml | role::bootstrap, role::dhcp |
...
Key | Description | Example | Created by | Data-type | Datafile: | Used by: |
---|---|---|---|---|---|---|
profile::dns::forwarders | Which DNS servers your DNS server should use to resolve domainnames where it is not an authorative DNS | - '<ip-addres-DNS1>' - '<ip-address-DNS2>' | N/A | List of strings | common.yaml | role::bootstrap, role::dns::master |
profile::dns::key::transfer | The TSIG keys used for zone-transfers | 'UvetjoX5zMiw/NbQr3biug==' | dnssec-keygen -a HMAC-MD5 -b 128 -n HOST <keyname> | String | common.yaml | role::bootstrap, role::dns::master, role::dns::slave |
profile::dns::key::update | The TSIG keys used for DNS updates | 'UvetjoX5zMiw/NbQr3biug==' | dnssec-keygen -a HMAC-MD5 -b 128 -n HOST <keyname> | String | common.yaml | role::bootstrap, role::dns::master, role::dns::slave |
profile::dns::slaves | A list over DNS slave-servers which replicates the zone-files from the main DNS server. The hash is structured as key=Servername and value=DNS-IPv4 | 'ns2.example.com': '192.0.2.130' | N/A | List of Hashes | common.yaml | role::bootstrap, role::dns::master, role::dns::slave |
profile::dns::zones | A list over DNS zones managed by our DNS servers, or used by our dashboard. The hash is structured as key=DNS-zone and value=DNS-server-shortname. | 'zone.example.com': 'ns1' | N/A | List of Hashes | common.yaml | role::bootstrap, role::dashboard, role::dns::master, role::dns::slave |
...
Key | Description | Example | Created by | Data-type | Datafile: | Used by: |
---|---|---|---|---|---|---|
profile::dns::<shortname>::ipv4 | The IPv4 address of a specific DNS server. | '192.0.2.129' | N/A | String | common.yaml | role::bootstrap, role::dashboard, role::dns::master, role::dns::slave |
profile::dns::<shortname>::name | The fqdn of a specific DNS server | 'ns1.example.com' | N/A | String | common.yaml | role::bootstrap, role::dns::master, role::dns::slave |
...
Key | Description | Example | Created by | Data-type | Datafile: | Used by: |
---|---|---|---|---|---|---|
profile::haproxy::management::ipv4 | The IPv4 address used in front og the loadbalancer used for managemnet services | '192.0.2.151' | N/A | String | networking.yaml | role::bootstrap, role::puppet::db, role::puppet::server, role::mysql, role::balancer::management |
profile::haproxy::management::ipv4::id | The VRRP id used by the IPv4 VRRP instance. | 11 | N/A | Integer | networking.yaml | role::bootstrap, role::balancer::management |
profile::haproxy::management::ipv4::priority | The VRRP priority used by the IPv4 VRRP instance. | 10 | N/A | Integer | networking.yaml | role::bootstrap, role::balancer::management |
profile::haproxy::management::ipv6 | The IPv4 address used in front og the loadbalancer used for managemnet services | '2001:db8:beef:707::7b1' | N/A | String | networking.yaml | role::bootstrap, role::puppet::db, role::puppet::server, role::mysql, role::balancer::management |
profile::haproxy::management::ipv6::id | The VRRP id used by the IPv6 VRRP instance. | 12 | N/A | Integer | networking.yaml | role::bootstrap, role::balancer::management |
profile::haproxy::management::ipv6::priority | The VRRP priority used by the IPv6 VRRP instance. | 10 | N/A | Integer | networking.yaml | role::bootstrap, role::balancer::management |
...
Key | Description | Example | Created by | Data-type | Datafile | Used by |
---|---|---|---|---|---|---|
profile::mysqlcluster::servers | This is a list over IPv4 addresses used by servers in the cluster. This list are used when a server starts up, to discover at least one of the machines already in the cluster. | - '192.0.2.201' | N/A | String | common.yaml | role::bootstrap, role::mysql |
profile::mysqlcluster::master | The fqdn of one of the mysql-servers. This are in theory used by the puppet-galera module to start one server in case all servers are down. | 'mysql1.example.com' | N/A | String | common.yaml | role::bootstrap, role::mysql |
profile::mysqlcluster::root_password | This is the password of the mysql root user | 'OwT$Etc$=|;h(=upip#3' | pwgen -s -y 20 -1 | String | common.yaml | role::bootstrap, role::mysql |
profile::mysqlcluster::status_password | This is the password of the mysql status user | ';^8P"M,Oem6le\T"am!0' | pwgen -s -y 20 -1 | String | common.yaml | role::bootstrap, role::mysql |
profile::mysqlcluster::haproxy_password | This is the password of the mysql haproxy user. This user is so that haproxy can create more robust checks than just see if port 3306 is open. | '4g36-&jHNFF?J-7yQZHa' | pwgen -s -y 20 -1 | String | common.yaml | role::bootstrap, role::mysql |
...
Key | Description | Example | Created by | Data-type | Datafile: | Used by |
---|---|---|---|---|---|---|
profile::postgres::ipv4 | The IPv4 address to use in front of the postgres servers. | '192.0.2.204' | N/A | String | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave, role::puppet::db |
profile::postgres::ipv4::id | The VRRP id to use for the VRRP instance negotiating for postgres's IPv4 address | 13 | N/A | Integer | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave |
profile::postgres::ipv4::priority | The VRRP priority to use for the VRRP instance negotiating for postgres's IPv4 address | 10 | N/A | Integer | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave |
profile::postgres::ipv6 | The IPv6 address to use in front of the postgres servers. | '2001:db8:beef:707::9:6591' | N/A | String | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave, role::puppet::db |
profile::postgres::ipv6::id | The VRRP id to use for the VRRP instance negotiating for postgres's IPv6 address | 14 | N/A | Integer | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave |
profile::postgres::ipv6::priority | The VRRP priority to use for the VRRP instance negotiating for postgres's IPv6 address | 10 | N/A | Integer | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave |
profile::postgres::masterserver | A fqdn identifying the postgres server which is supposed to be the master. This affects which servers are going to create databases and users. | 'pgsql1.example.com' | N/A | String | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave |
profile::postgres::password | The password for the "postgres" postgresql user. | 'd4Cwfl)W}onosE~Y[]G,' | pwgen -s -y 20 -1 | String | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave |
profile::postgres::replicatorpassword | The password used for the "replicator" postgresql user. | 'Gz,j*>Qt'dF{-\Sr4N-_' | pwgen -s -y 20 -1 | String | common.yaml | role::bootstrap, role::postgres::master, role::postgres::slave |
...
Key | Description | Example | Created by | Data-type | Datafile: | Used by |
---|---|---|---|---|---|---|
profile::puppet::aptkey | The gpg key used to authenticate the puppetlabs apt repository | '6F6B15509CF8E59E6E469F327F438280EF8D349F' | puppetlabs | String | common.yaml | All |
profile::puppet::caserver | The fqdn of the puppetca server | 'puppetca.example.com' | N/A | String | common.yaml | All |
profile::puppet::environment | The puppet environment a certain host should be configured to use. This needs to be a valid puppet environment, but it will also be owerridden by the ENC, so it is not important exactly which environment are listed her as long as it exists. If you do not use an ENC, this is the puppet environment a client will retrieve config from. | 'production' | N/A | String | common.yaml | All |
profile::puppet::hostname | This is the fqdn the clients use to contact the puppetmasters. | 'puppet.example.com' | N/A | String | common.yaml | All |
profile::puppet::r10k::repo | The path to the git-repository which r10k uses to retrieve environments and modules. | 'https://github.com/myorg/r10k.git' | N/A | String | common.yaml | role::bootstrap, role::puppet::server, role::puppet::ca |
profile::puppet::runinterval | How often the puppet client should run. Given as a string consisting of a number and a prefix (h, m). | '60m' | N/A | String | common.yaml | All |
profile::puppetdb::database::name | The name of the postgres database used by puppetdb | 'puppetdb' | N/A | String | common.yaml | role::bootstrap, role::puppet::db, role::postgres::master |
profile::puppetdb::database::user | The username of the postgres database used by puppetdb | 'puppetdb' | N/A | String | common.yaml | role::bootstrap, role::puppet::db, role::postgres::master |
profile::puppetdb::database::pass | The password of the postgres database used by puppetdb | 'teY.>&3@Ub$X-OGxOFQ7' | pwgen -s -y 20 -1 | String | common.yaml | role::bootstrap, role::puppet::db, role::postgres::master |
profile::puppetdb::hostname | The hostname which the puppetservers use to contact the puppetdb service | 'puppetdb.example.com' | N/A | String | common.yaml | role::bootstrap, role::puppet::server role::puppet::ca |
...