本文系統Client6.0
本文旨在安裝puppet,並且測試OK;相關file,service,exec,user管理後面會推出;
master端:
1 2 3 4 5 6 7 | [root@master ~]# hostname master.lansgg.com [root@master ~]# cat /etc/hosts 192.168 . 182.155 master.lansgg.com master 192.168 . 182.142 client.lansgg.com client [root@master ~]# ifconfig eth0 |grep "inet addr"
inet addr: 192.168 . 182.155 Bcast: 192.168 . 182.255 Mask: 255.255 . 255.0 |
client端:
1 2 3 4 5 6 7 | [root@client ~]# hostname client.lansgg.com [root@client ~]# cat /etc/hosts 192.168 . 182.155 master.lansgg.com master 192.168 . 182.142 client.lansgg.com client [root@client ~]# ifconfig eth0 |grep "inet addr"
inet addr: 192.168 . 182.142 Bcast: 192.168 . 182.255 Mask: 255.255 . 255.0 |
開始安裝puppet(注意安裝selinux和iptables)
master 端:
1 2 3 4 | [root@master ~]# yum install puppetmaster -y [root@master ~]# vim /etc/puppet/puppet.conf
autosign = true #新增自動簽證client端的註冊信息 service puppetmaster start |
client端:
1 2 | [root@client ~]# yum install puppet -y service puppet start |
測試
1 | [root@client puppet]# puppetd --test --server master.lansgg.com --verbose |
PS:注意時間同步
到此說明通信OK了;
下面來個文件測試:
master端:
1 2 3 | [root@master ~]# vim /etc/puppet/manifests/site.pp file { "/tmp/lansgg.txt" :
content => "lansgg test,pass~\n" ;} |
client端:
1 | [root@client puppet]# puppetd --test --server master.lansgg.com --verbose |
測試通過,文件已經下發;
關於在master端查看證書:
puppetca -s -a (簽證所有client證書)
puppetca -s 某個client證書
puppetca -a -l 查看已經簽證的證書
安裝完畢,測試完畢