Puppet Open Source installation: Puppet Open Source 2.7.13
# puppet-server installation
# enable pupperlabs yum repository
[root@linux64-puppet-server ~]# cat /etc/yum.repos.d/puppetlabs.repo
[puppetlabs]
name=(local yum repo of) Puppet Labs Packages
baseurl=http://linux64-yum-repo-server/puppet/el/5/products/x86_64/
enabled=1
gpgcheck=1
gpgkey=http://linux64-yum-repo-server/puppet/RPM-GPG-KEY-puppetlabs
[puppetlabs_dependencies]
name=(local yum repo of) Puppet Labs Packages
baseurl=http://linux64-yum-repo-server/puppet/el/5/dependencies/x86_64/
enabled=1
gpgcheck=1
gpgkey=http://linux64-yum-repo-server/puppet/RPM-GPG-KEY-puppetlabs
[root@linux64-puppet-server ~]# yum install puppet-server
Loaded plugins: security
puppetlabs | 1.9 kB 00:00
puppetlabs/primary_db | 26 kB 00:00
puppetlabs_dependencies | 1.9 kB 00:00
puppetlabs_dependencies/primary_db | 13 kB 00:00
Setting up Install Process
Resolving Dependencies
--> Running transaction check
---> Package puppet-server.noarch 0:2.7.13-1.el5 set to be updated
--> Processing Dependency: puppet = 2.7.13-1.el5 for package: puppet-server
--> Processing Dependency: /usr/bin/ruby for package: puppet-server
--> Running transaction check
---> Package puppet.noarch 0:2.7.13-1.el5 set to be updated
--> Processing Dependency: ruby(abi) >= 1.8 for package: puppet
--> Processing Dependency: facter >= 1.5 for package: puppet
--> Processing Dependency: ruby-shadow for package: puppet
--> Processing Dependency: ruby-augeas for package: puppet
---> Package ruby.x86_64 0:1.8.5-5.el5_4.8 set to be updated
--> Running transaction check
---> Package facter.x86_64 0:1.6.7-1 set to be updated
---> Package ruby-augeas.x86_64 0:0.4.1-1 set to be updated
--> Processing Dependency: augeas-libs >= 0.8.0 for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.8.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.11.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.10.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.1.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.12.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0()(64bit) for package: ruby-augeas
---> Package ruby-libs.x86_64 0:1.8.5-5.el5_4.8 set to be updated
---> Package ruby-shadow.x86_64 0:1.4.1-7 set to be updated
--> Running transaction check
---> Package augeas-libs.x86_64 0:0.10.0-3 set to be updated
--> Finished Dependency Resolution
Dependencies Resolved
=================================================================================================================================================
Package Arch Version Repository Size
=================================================================================================================================================
Installing:
puppet-server noarch 2.7.13-1.el5 puppetlabs 23 k
Installing for dependencies:
augeas-libs x86_64 0.10.0-3 puppetlabs_dependencies 376 k
facter x86_64 1.6.7-1 puppetlabs 68 k
puppet noarch 2.7.13-1.el5 puppetlabs 1.0 M
ruby x86_64 1.8.5-5.el5_4.8 el5_u5_base 280 k
ruby-augeas x86_64 0.4.1-1 puppetlabs_dependencies 22 k
ruby-libs x86_64 1.8.5-5.el5_4.8 el5_u5_base 1.6 M
ruby-shadow x86_64 1.4.1-7 puppetlabs_dependencies 10 k
Transaction Summary
=================================================================================================================================================
Install 8 Package(s)
Upgrade 0 Package(s)
Total download size: 3.5 M
Is this ok [y/N]:y
Downloading Packages:
(1/8): ruby-shadow-1.4.1-7.x86_64.rpm | 10 kB 00:00
(2/8): ruby-augeas-0.4.1-1.x86_64.rpm | 22 kB 00:00
(3/8): puppet-server-2.7.13-1.el5.noarch.rpm | 23 kB 00:00
(4/8): facter-1.6.7-1.el5.x86_64.rpm | 68 kB 00:00
(5/8): ruby-1.8.5-5.el5_4.8.x86_64.rpm | 280 kB 00:00
(6/8): augeas-libs-0.10.0-3.x86_64.rpm | 376 kB 00:00
(7/8): puppet-2.7.13-1.el5.noarch.rpm | 1.0 MB 00:01
(8/8): ruby-libs-1.8.5-5.el5_4.8.x86_64.rpm | 1.6 MB 00:01
-------------------------------------------------------------------------------------------------------------------------------------------------
Total 705 kB/s | 3.5 MB 00:05
warning: rpmts_HdrFromFdno: Header V3 RSA/SHA1 signature: NOKEY, key ID 4bd6ec30
puppetlabs_dependencies/gpgkey | 1.7 kB 00:00
Is this ok [y/N]: y
Running rpm_check_debug
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : ruby-libs 1/8
Installing : ruby 2/8
Installing : ruby-shadow 3/8
Installing : augeas-libs 4/8
Installing : ruby-augeas 5/8
Installing : facter 6/8
Installing : puppet 7/8
Installing : puppet-server 8/8
Installed:
puppet-server.noarch 0:2.7.13-1.el5
Dependency Installed:
augeas-libs.x86_64 0:0.10.0-3 facter.x86_64 0:1.6.7-1 puppet.noarch 0:2.7.13-1.el5 ruby.x86_64 0:1.8.5-5.el5_4.8
ruby-augeas.x86_64 0:0.4.1-1 ruby-libs.x86_64 0:1.8.5-5.el5_4.8 ruby-shadow.x86_64 0:1.4.1-7
Complete!
# puppet-agent installation
# enable pupperlabs yum repository
[root@linux64-puppet-agent ~]# cat /etc/yum.repos.d/puppetlabs.repo
[puppetlabs]
name=(local yum repo of) Puppet Labs Packages
baseurl=http://linux64-yum-repo-server/puppet/el/5/products/x86_64/
enabled=1
gpgcheck=1
gpgkey=http://linux64-yum-repo-server/puppet/RPM-GPG-KEY-puppetlabs
[puppetlabs_dependencies]
name=(local yum repo of) Puppet Labs Packages
baseurl=http://linux64-yum-repo-server/puppet/el/5/dependencies/x86_64/
enabled=1
gpgcheck=1
gpgkey=http://linux64-yum-repo-server/puppet/RPM-GPG-KEY-puppetlabs
[root@linux64-puppet-agent ~]# yum install puppet
Loaded plugins: security
el5_u5_base | 1.1 kB 00:00
ol5_u5_base | 951 B 00:00
puppetlabs | 1.9 kB 00:00
puppetlabs/primary_db | 26 kB 00:00
puppetlabs_dependencies | 1.9 kB 00:00
puppetlabs_dependencies/primary_db | 13 kB 00:00
Setting up Install Process
Resolving Dependencies
--> Running transaction check
---> Package puppet.noarch 0:2.7.13-1.el5 set to be updated
--> Processing Dependency: ruby >= 1.8.5 for package: puppet
--> Processing Dependency: ruby(abi) >= 1.8 for package: puppet
--> Processing Dependency: facter >= 1.5 for package: puppet
--> Processing Dependency: ruby-shadow for package: puppet
--> Processing Dependency: ruby-augeas for package: puppet
--> Processing Dependency: /usr/bin/ruby for package: puppet
--> Running transaction check
---> Package facter.x86_64 0:1.6.7-1 set to be updated
---> Package ruby.x86_64 0:1.8.5-5.el5_4.8 set to be updated
---> Package ruby-augeas.x86_64 0:0.4.1-1 set to be updated
--> Processing Dependency: augeas-libs >= 0.8.0 for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.8.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.11.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.10.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.1.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0(AUGEAS_0.12.0)(64bit) for package: ruby-augeas
--> Processing Dependency: libaugeas.so.0()(64bit) for package: ruby-augeas
---> Package ruby-libs.x86_64 0:1.8.5-5.el5_4.8 set to be updated
---> Package ruby-shadow.x86_64 0:1.4.1-7 set to be updated
--> Running transaction check
---> Package augeas-libs.x86_64 0:0.10.0-3 set to be updated
--> Finished Dependency Resolution
Dependencies Resolved
=================================================================================================================================================
Package Arch Version Repository Size
=================================================================================================================================================
Installing:
puppet noarch 2.7.13-1.el5 puppetlabs 1.0 M
Installing for dependencies:
augeas-libs x86_64 0.10.0-3 puppetlabs_dependencies 376 k
facter x86_64 1.6.7-1 puppetlabs 68 k
ruby x86_64 1.8.5-5.el5_4.8 el5_u5_base 280 k
ruby-augeas x86_64 0.4.1-1 puppetlabs_dependencies 22 k
ruby-libs x86_64 1.8.5-5.el5_4.8 el5_u5_base 1.6 M
ruby-shadow x86_64 1.4.1-7 puppetlabs_dependencies 10 k
Transaction Summary
=================================================================================================================================================
Install 7 Package(s)
Upgrade 0 Package(s)
Total download size: 3.4 M
Is this ok [y/N]: y
Downloading Packages:
(1/7): ruby-shadow-1.4.1-7.x86_64.rpm | 10 kB 00:00
(2/7): ruby-augeas-0.4.1-1.x86_64.rpm | 22 kB 00:00
(3/7): facter-1.6.7-1.el5.x86_64.rpm | 68 kB 00:00
(4/7): ruby-1.8.5-5.el5_4.8.x86_64.rpm | 280 kB 00:00
(5/7): augeas-libs-0.10.0-3.x86_64.rpm | 376 kB 00:00
(6/7): puppet-2.7.13-1.el5.noarch.rpm | 1.0 MB 00:00
(7/7): ruby-libs-1.8.5-5.el5_4.8.x86_64.rpm | 1.6 MB 00:01
-------------------------------------------------------------------------------------------------------------------------------------------------
Total 1.0 MB/s | 3.4 MB 00:03
warning: rpmts_HdrFromFdno: Header V3 RSA/SHA1 signature: NOKEY, key ID 4bd6ec30
puppetlabs_dependencies/gpgkey | 1.7 kB 00:00
Is this ok [y/N]: y
Running rpm_check_debug
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : ruby-libs 1/7
Installing : ruby 2/7
Installing : ruby-shadow 3/7
Installing : augeas-libs 4/7
Installing : ruby-augeas 5/7
Installing : facter 6/7
Installing : puppet 7/7
Installed:
puppet.noarch 0:2.7.13-1.el5
Dependency Installed:
augeas-libs.x86_64 0:0.10.0-3 facter.x86_64 0:1.6.7-1 ruby.x86_64 0:1.8.5-5.el5_4.8 ruby-augeas.x86_64 0:0.4.1-1
ruby-libs.x86_64 0:1.8.5-5.el5_4.8 ruby-shadow.x86_64 0:1.4.1-7
Complete!
# configure puppetmaster
[root@linux64-puppet-server ~]# puppet apply -V
2.7.13
[root@linux64-puppet-server ~]# chkconfig puppetmaster on
# insert “modulepath = /etc/puppet/modules:/usr/share/puppet/modules” into /etc/puppet/puppet.conf
[root@linux64-puppet-server ~]# cat /etc/puppet/puppet.conf
[main]
# The Puppet log directory.
# The default value is '$vardir/log'.
logdir = /var/log/puppet
# Where Puppet PID files are kept.
# The default value is '$vardir/run'.
rundir = /var/run/puppet
modulepath = /etc/puppet/modules:/usr/share/puppet/modules
# Where SSL certificates are kept.
# The default value is '$confdir/ssl'.
ssldir = $vardir/ssl
[master]
certname = linux64-puppet-server
dns_alt_names = linux64-puppet-server ,puppet
[agent]
certname = linux64-puppet-server
server = linux64-puppet-server
# The file in which puppetd stores a list of the classes
# associated with the retrieved configuratiion. Can be loaded in
# the separate ``puppet`` executable using the ``--loadclasses``
# option.
# The default value is '$confdir/classes.txt'.
classfile = $vardir/classes.txt
# Where puppetd caches the local configuration. An
# extension indicating the cache format is added automatically.
# The default value is '$confdir/localconfig'.
localconfig = $vardir/localconfig
[root@linux64-puppet-server ~]# service puppetmaster start
[root@linux64-puppet-server ~]# puppet cert list
linux64-puppet-server (2E:DC:48:EC:2B:63:F5:28:09:8F:D3:9F:3C:9B:80:2C)
[root@linux64-puppet-server ~]# puppet cert sign linux64-puppet-agent
notice: Signed certificate request for linux64-puppet-server
notice: Removing file Puppet::SSL::CertificateRequest linux64-puppet-server at '/var/lib/puppet/ssl/ca/requests/ linux64-puppet-server .pem'
[root@linux64-puppet-server ~]# puppet cert list
[root@linux64-puppet-server ~]# puppet cert -la
+ linux64-puppet-server (61:68:28:1D:C6:03:27:75:D0:71:07:6B:AD:B0:A8:99) (alt names: DNS: linux64-puppet-server, DNS:puppet)
+ linux64-puppet-agent (23:FE:14:30:F9:68:C7:F4:6F:FE:BF:D9:14:50:49:7C)
# update puppet to latest release (2.7.16) for module list command
[root@linux64-puppet-server ~]# yum install puppet -y
[root@mt-olinux64-b03 ~]# puppet apply -V
2.7.16
[root@mt-olinux64-b03 ~]# puppet module list
/etc/puppet/modules
+-- pptdeploy (???)
/usr/share/puppet/modules (no modules installed)
# configure puppet agent
[root@linux64-puppet-agent ~]#
puppet apply -V
2.7.13
[root@linux64-puppet-agent ~]#
chkconfig puppet on
#insert “server=<puppet server>” into /etc/puppet/puppet.conf
[root@linux64-puppet-agent ~]# cat /etc/puppet/puppet.conf
[main]
# The Puppet log directory.
# The default value is '$vardir/log'.
logdir = /var/log/puppet
# Where Puppet PID files are kept.
# The default value is '$vardir/run'.
rundir = /var/run/puppet
modulepath = modulepath = /etc/puppet/modules:/usr/share/puppet/modules
# Where SSL certificates are kept.
# The default value is '$confdir/ssl'.
ssldir = $vardir/ssl
[agent]
certname = linux64-puppet-agent
server = linux64-puppet-server
# The file in which puppetd stores a list of the classes
# associated with the retrieved configuratiion. Can be loaded in
# the separate ``puppet`` executable using the ``--loadclasses``
# option.
# The default value is '$confdir/classes.txt'.
classfile = $vardir/classes.txt
# Where puppetd caches the local configuration. An
# extension indicating the cache format is added automatically.
# The default value is '$confdir/localconfig'.
localconfig = $vardir/localconfig
[root@linux64-puppet-agent ~]# service puppet start
# troubleshooting
[root@linux64-puppet-server~]# puppet config print modulepath
/etc/puppet/modules:/usr/share/puppet/modules
[root@linux64-puppet-server ~]# puppet config print confdir
/etc/puppet
[root@linux64-puppet-server ~]# puppet config print vardir
/var/lib/puppet
[root@linux64-puppet-agent ~]# puppet agent -t --noop
info: Creating a new SSL key for linux64-puppet-agent
warning: peer certificate won't be verified in this SSL session
info: Caching certificate for ca
warning: peer certificate won't be verified in this SSL session
info: Caching certificate for linux64-puppet-agent
err: Could not request certificate: The certificate retrieved from the master does not match the agent's private key.
Certificate fingerprint: 70:14:D9:C3:E1:E5:4D:44:C2:43:21:9B:64:47:F0:B3
To fix this, remove the certificate from both the master and the agent and then start a puppet run, which will automatically regenerate a certficate.
On the master:
puppet cert clean linux64-puppet-agent
On the agent:
rm -f /var/lib/puppet/ssl/certs/linux64-puppet-agent.pem
puppet agent -t
Exiting; failed to retrieve certificate and waitforcert is disabled
