Always assume your git repo is compromised. This is not far-fetched, as a git repo lives on every developer desktop and laptop. So, should a device be stolen, the thieving party has a full copy of your control repo… Including all your passwords, hostnames, service endpoints etc. This is a very bad position to find…
Automate code deployment in Puppet Enterprise via code manager
In a previous post, I took you through leveraging r10k to automatically trigger and deploy code into you environment. In this post, I will go through a similar process, but use Puppet Enterprise’s native (and recommended) helper, code manager. Now it should be noted that Code manager basically uses r10k under the covers, but much…
Puppet Enterprise – Installation
Why PE? As far as possible, I try to use Puppet Enterprise. The GUI is incredibly useful. It provides for example the ability to trigger tasks and plans directly from the GUI. This is incredibly useful for all teams, small to enterprise. The other built-in benefit of PE is that it comes with PuppetDB in…
Find details of runaway user
I had the great joy of having to troubleshoot a compromised server. The server fell victim to a security flaw in the software it ran, resulting in the process running malware. Once we pulled the data off and decided to rebuild the box just to be sure, I wanted to quickly investigate what the compromised…
Using r10k to automate deployment of Puppet code.
Automated deployment of Puppet code in its entirety is actually a fairly complicated question. To make automated deployment more palatable, we will break the concept up into two areas. Deployments of control repositories and modules from the Forge Deploying our own custom modules, or modules that includes third-party contributions. Control repository automation is straightforward, as…
Install Katello on CentOS 7 – Configuration (VMWare Provisioning)
Next up will be provisioning new servers automatically. Allocate DNS proxy service Navigate to Infrastructure -> Domains.On the top navbar, ensure “Any Organisation” and “Any Location”. Thus is due to the Katello server now having command over the domain yet. Click on the domain (in our case ics.dmz), click on the DNS Proxy dropdown, and…
Install Katello on CentOS 7 – Configuration (Patching)
Now that we have a running Katello server, it is time to do the initial configuration. The sequence of these are important, as there are some dependencies, for example one need to have the GPG key before one creates the repo. Thus, having those ahead of time will facilitate and expedite the configuration. First create…
Installing Katello on CentOS 7
Katello is a plugin for Foreman that provides the functionality to manage the patching life cycle of servers.It should be noted that, even if Katello is a plugin, one cannot install Katello on a existing Foreman install – it WILL break things.Best to start with a fresh install… This first post will cover the initial…
…and we’re live!
Welcome to my latest venture…. My name is Werner van der Merwe. I am an ex-South African now residing the beautiful country that is New Zealand. Being a huge tech enthusiast, I thought having a blog will be a good avenue to both share my knowledge, as well as giving me a better-looking wiki! My…