Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [configuration-management]

Configuration Management refers to establishing and maintaining standardized system configurations within an organization. This tag encompasses the process of defining the configuration profiles, and the software used to manage and deploy it.

Configuration Management refers to establishing and maintaining standardized system configurations within an organization.

This tag encompasses the process of defining the configuration profiles, and the software used to manage and deploy it, such as , , and .

370 questions
10
votes
1 answer

Puppet: managing (lots of) Apache VirtualHosts

I'm learning my way through configuration management in general and using puppet to implement it in particular. I have already done some generic research (also on SF) and right now I'm considering Apache VirtualHosts. We host a lot of LAMP websites…
Luke404
  • 5,708
  • 3
  • 44
  • 58
10
votes
3 answers

Set sysctl.conf parameters with Puppet

This was a breeze in CFEngine... But I'm in a Puppet environment now, and need to be able to assign/ensure/check certain sysctl.conf variables. In the CFEngine world, I could simply check for specific lines within a config file... I've found a small…
ewwhite
  • 194,921
  • 91
  • 434
  • 799
10
votes
1 answer

Configuration Management overkill for 3 node clusters?

I have 2-3 node clusters for our load balancers and various web applications. I'm having to make the change in QA first, then in staging (on 2-3 servers), then in production (on 2-3) servers. Is a configuration management tool like chef or puppet…
Bradford
  • 295
  • 3
  • 7
9
votes
3 answers

Configuration management for 'single server multiple admins'

We've set up a server that's running the infrastructure for a small association. So far, we've tried to manage the configuration with Ansible, but that has not been a great success. Perhaps we're doing it wrong. In principle, the idea is that this…
Joost
  • 177
  • 1
  • 9
9
votes
1 answer

Ansible - Access through Bastion w/ MFA

In my current environment, I have all my Linux servers only accessible through a bastion host, which has MFA enabled. I've managed to get Ansible to successfully talk to servers through the bastion, the only problem is that it establishes a new…
Paul Kirby
  • 191
  • 3
9
votes
2 answers

HP ProLiant system preparation/deployment techniques (Array, BIOS, firmware, etc.)

I spend a lot of my time with HP ProLiant systems and Linux installations. Due to the nature of the business I work in, I don't have the luxury of being able to deploy large numbers of identical systems at the same time. In addition, my systems are…
ewwhite
  • 194,921
  • 91
  • 434
  • 799
8
votes
7 answers

Version Controlling Foreman & Puppet

I have just setup Foreman for the first time & am not sure how to go about putting all of my configurations under version control. I know I can use Git for each module I install on my Puppet master but would prefer a more holistic solution that…
GeneBean
  • 313
  • 1
  • 4
  • 10
8
votes
2 answers

How can I use the output of a command in cfengine3

I want to list a directory content and use the result somewhere else: bundle agent test { commands: "ls /tmp/test/"; reports: ubuntu:: "print output here for example"; # or add it to a variable which is how I really want…
awsiv
  • 166
  • 11
7
votes
1 answer

Is there any way to see the group_vars, host_vars, etc. available to a host in ansible?

So I just started a new company, and while familiarizing myself with the ansible repository, I was wondering if there's any way to see the variables that come from group_vars, host_vars and all that together in one place, it's non-trivial to gather…
Luis F Hernandez
  • 633
  • 1
  • 7
  • 9
7
votes
2 answers

Securing the primary Ansible user

It seems that there are only two reasonable approaches for the primary Ansible user: Using root Using another user (e.g., ansible) with NOPASSWD sudo access The first option is a no-go since I cringe at the thought of keeping PermitRootLogin on.…
Belmin Fernandez
  • 10,629
  • 26
  • 84
  • 145
7
votes
1 answer

Puppet package "ensure => latest" doesn't always work

I have a unique situation where the Puppet package ensure => latest directive only worked on some of my systems. Out of 30 servers, the packages updated properly on all but 4. I'm trying to get major versions of the software suite from < 9.40 to…
ewwhite
  • 194,921
  • 91
  • 434
  • 799
7
votes
2 answers

Ansible : using different sudo user for different hosts

Recently started using ansible. We have servers where the application is setup under different users, like in server xyz.com, unix user is xyz_user and so on. So in case of xyz.com, ansible xyz.com -a 'command' -u xyz_user -K How can we set the…
nitins
  • 2,527
  • 15
  • 42
  • 65
7
votes
9 answers

ConfigMgr 2012 - How to automatically make updates available to computers without forcing them to be installed?

I'm using System Center Configuration Manager 2012 with the Software Update Point feature; however, in this environment patching has to be strictly manual, because server reboots need to be approved and scheduled by different people; thus, I need to…
Massimo
  • 68,714
  • 56
  • 196
  • 319
7
votes
2 answers

How to put FreeBSD configuration under Revision Control?

I heard once that in Linux it's possible to put whole /etc/ directory into repository. In fact i already done too much crap on server and I quite disoriented what exactly is setup in there at all. Question is how to put FreeBSD all configuration…
holms
  • 1,464
  • 7
  • 20
  • 37
7
votes
2 answers

How to comment out / uncomment a line in a configuration file with Augeas?

Assumming that I have the following in the /etc/syslog.conf file: # Log all kernel messages to the console. # Logging much else clutters up the screen. #kern.* /dev/console I want to change it to kern.* …
quanta
  • 50,327
  • 19
  • 152
  • 213
1 2
3
24 25