https://www.puppet.com/community logo
Join Slack
Powered by
# puppet
  • s
    This message was deleted.
    t
    d
    • 3
    • 2
  • s
    Hello Everyone, I want to make changes to the 
    /_etc/ssh/sshd_config_
    file, with below lines: • AllowTcpForwarding yes • MaxStartups 100 And, it requires for only 2 servers
  • s
    Hello Everyone, I want to make changes to the 
    /_etc/ssh/sshd_config_
    file, with below lines: • AllowTcpForwarding yes • MaxStartups 100 And, it requires for only 3 puppet agent systems
  • s
    This message was deleted.
    s
    h
    • 3
    • 6
  • d
  • s
    This message was deleted.
    j
    c
    • 3
    • 7
  • n
    When using eyaml can I just combine eyaml and yaml paths together into a single layer? Does this have a performance impact since it would be using eyaml as the lookup method even though only a few keys are encrypted?
  • n
    Yes, you can just use the 
    eyaml
    backend and mix both yaml and eyaml in a single layer. That’s what I prefer to do, because it simplifies things (IMO).
  • n
    If there is a performance impact, I haven’t ever noticed it.
  • n
    If there is a performance impact, I haven’t ever noticed it.
  • h
    Marginally (insignificantly) slower I would expect
  • r
    Why does the former work and not the latter?
    Copy code
    # Silly, poor use
  class { "puppet": * => lookup('puppet') }
  class { "foreman": * => lookup('foreman') }

  # proper...
  include puppet
  include foreman
  • n
    Can you clarify what you mean by work? Those are two completely different things.
  • v
    the former literally search for one key only
  • v
    not puppet::argument
  • v
    not puppet::argument
  • r
    Sure. By work, I mean
  • r
    @vchepkov oh, that’s probably it.
  • n
    Automatic parameter works by prefixing the key names in hiera with the class name. Not by puttting the class parameters in a key named after the class. e.g. You want your Hiera data to look like this:
    Copy code
    puppet::param_1: "foo"
puppet::param_2: "bar"
forman::param_1: "hi"
forman::param_2: "earth"
    Not like this:
    Copy code
    puppet:
  param_1: "foo"
  param_2: "bar"
  • r
    @natemccurdy yessir. 🤦‍♂️
  • r
    I used my foreman-answers.yaml as a starting point and it doesn’t have the prefixing.
  • r
    Thanks @natemccurdy and @vchepkov
    👍 2
  • j
    having a strange issue... I have created a script to generate self signed certs with OpenSSL. Using 
    puppet agent -t --debug
    I can see that the powershell command being called is 
    powershell -ExecutionPolicy ByPass -File C:\Installs\SelfSignedCertScript\Create-SelfSignedCert.ps1 -OutputPath "C:\Program Files\SonarQube\Certificates" -Domain "sonarqube.company.local"
    When I run that command in a 
    cmd
    shell, I get the certificates that I expect. When it runs in Puppet, the certificates are not created. Attached is the output I'm getting from the 
    cmd
    window. I don't see any obvious reason why the script would fail to create the certificate when run by puppet
  • j
    the first lines are creation of the private key, which never materializes in the output folder when run by puppet. The "signature ok" line is the command to generate the CSR, and the the subject line is the command to create the cert from the key and CSR
  • d
    meeting 🧑‍🏫Puppet Forge is about to start up in #CFD8Z9A4T
  • j
    I figured out how to suppress all output, and my certificates are still not being created
  • n
    What does your Puppet code look like that’s running that script?
  • n
    (note that Puppet running an 
    exec
    is usually very different in context than you running the script by hand. It’ll running as an administrator, for one thing, not your user.)
  • s
    This message was deleted.
    n
    j
    • 3
    • 13
  • j
    (not enough screen real estate on my laptop)
1...101112...428Latest