本文系統Client6.0
本文旨在安裝puppet,並且測試OK;相關file,service,exec,user管理後面會推出;
master端:
1 2 3 4 5 6 7 | [root@master ~]# hostnamemaster.lansgg.com[root@master ~]# cat /etc/hosts192.168.182.155master.lansgg.com master192.168.182.142client.lansgg.com client[root@master ~]# ifconfig eth0 |grep "inet addr"inet addr:192.168.182.155Bcast:192.168.182.255Mask:255.255.255.0 |
client端:
1 2 3 4 5 6 7 | [root@client ~]# hostnameclient.lansgg.com[root@client ~]# cat /etc/hosts192.168.182.155master.lansgg.com master192.168.182.142client.lansgg.com client[root@client ~]# ifconfig eth0 |grep "inet addr"inet addr:192.168.182.142Bcast:192.168.182.255Mask:255.255.255.0 |
開始安裝puppet(注意安裝selinux和iptables)
master 端:
1 2 3 4 | [root@master ~]# yum install puppetmaster -y[root@master ~]# vim /etc/puppet/puppet.confautosign = true#新增自動簽證client端的註冊信息service puppetmaster start |
client端:
1 2 | [root@client ~]# yum install puppet -yservice puppet start |
測試
1 | [root@client puppet]# puppetd --test --server master.lansgg.com --verbose |
PS:注意時間同步
到此說明通信OK了;
下面來個文件測試:
master端:
1 2 3 | [root@master ~]# vim /etc/puppet/manifests/site.ppfile {"/tmp/lansgg.txt":content => "lansgg test,pass~\n";} |
client端:
1 | [root@client puppet]# puppetd --test --server master.lansgg.com --verbose |
測試通過,文件已經下發;
關於在master端查看證書:
puppetca -s -a (簽證所有client證書)
puppetca -s 某個client證書
puppetca -a -l 查看已經簽證的證書
安裝完畢,測試完畢