puppet采用的是C/S结构
我的实验环境是centos6.4
server: puppet-S puppet-S.xxx.com
172.16.7.60
10.10.10.1
client: puppet-C puppet-C.xxx.com
172.16.7.61
10.10.10.2
1.更新源
yum install
2.同步时间
yum install ntp
service ntpd start
chkconfig ntpd on
3.安装ruby环境
yum install ruby ruby-libs ruby-rdoc
wget http://yum.puppetlabs.com/el/6/products/x86_64/puppetlabs-release-6-7.noarch.rpm
yum install puppetlabs-release-6-7.noarch.rpm
4.server端安装puppet-server
yum install puppet-server
service iptables stop
5.client端安装puppet
yum install puppet
puppet agent --no-deamonize --onetime --verbose --debug --server=puppet-S(这里会自动转成小写可能puppet语法里木有大写的说法,这句话类似于发送一个认证到master节点上)
6.server端认证client端
[root@puppet-S tmp]# puppet cert list --all
"puppet-c.xxx.com" (SHA256) AB:F7:E4:9A:50:90:E5:A4:F1:A9:08:64:A8:AD:51:C5:F9:58:B6:A4:51:7F:40:D6:C4:4E:CE:C0:82:26:47:31
+ "puppet-s.xxx.com" (SHA256) 82:4F:BF:85:47:E2:5D:43:4C:3A:37:73:B7:FE:06:14:BB:59:C6:04:C6:EE:0C:8F:3B:7A:00:53:68:7F:A8:0E (alt names: "DNS:puppet", "DNS:puppet-S.xxx.com", "DNS:puppet-s.xxx.com", "DNS:puppet.xxx.com")
[root@puppet-S tmp]# puppet cert --sign puppet-C
Error: Could not find certificate request for puppet-c
[root@puppet-S tmp]# puppet cert --sign puppet-c.xxx.com
Notice: Signed certificate request for puppet-c.xxx.com
Notice: Removing file Puppet::SSL::CertificateRequest puppet-c.xxx.com at '/var/lib/puppet/ssl/ca/requests/puppet-c.xxx.com.pem'
[root@puppet-S tmp]# puppet cert list --all
+ "puppet-c.xxx.com" (SHA256) 53:72:AB:9F:69:52:A6:A5:97:8A:32:03:17:31:D2:5F:4D:16:D4:C3:6D:BC:10:F8:29:49:50:46:CE:54:52:35
+ "puppet-s.xxx.com" (SHA256) 82:4F:BF:85:47:E2:5D:43:4C:3A:37:73:B7:FE:06:14:BB:59:C6:04:C6:EE:0C:8F:3B:7A:00:53:68:7F:A8:0E (alt names: "DNS:puppet", "DNS:puppet-S.xxx.com", "DNS:puppet-s.xxx.com", "DNS:puppet.xxx.com")
认证成功之后数据前面会多加一个(+)
7.验证
在client端写一个文件
cd /tmp
vi helloworld.txt(随便写点东西到里面去)
在server端创建一个puppet文件
cd /etc/puppet/manifests
vi site.pp
site.pp:
node default{
file{
"/tmp/helloworld.txt": content => "hello, world";
}
}
之后查看client节点,发现/tmp/helloworld.txt 内容修改成hello, world