User Guide
Foreman Plugins
The Bunraku instance has the following plugins enabled as part of the setup
Default Hostgroup - Something we have used extensively: Documentation
Plugins to allow you to deploy hosts into various Cloud stacks from within Foreman.
Compute EC2
Compute Libvert
Compute Openstack
Compute VMWare
Documentation for this can be found within the official Foreman documentation.
Puppet node configuration
For Linux distributions that use apt proceed to option 1 below, for distributions that use yum proceed to option 2.
Option 1: APT
Install the agent
To add the repository for your distribution, install the release package with the codename for your distribution using the 4 commands below (Check https://apt.puppetlabs.com/ for versions):
sudo apt -y install ca-certificates
wget https://apt.puppetlabs.com/puppet-release-<codename>.deb
sudo dpkg -i puppet-release-<codename>.deb
sudo apt update
Run the following command:
sudo apt install puppet-agent
Option 2: YUM
Install the agent
To add the repository for your distribution, install the release package with the codename for your distribution using the command below (Check https://apt.puppetlabs.com/ for versions):
sudo rpm -ivh http://yum.puppetlabs.com/puppet-release-el-9.noarch.rpm
Run the following command:
sudo yum install puppet-agent
Configure the Puppet node
Enter the following 4 commands replacing puppetserver.example com with the publicly accessible address of the Bunraku server:
sudo puppet config set server puppetserver.example.com --section main
sudo puppet config set certname $(facter hostname| tr '[:upper:]' '[:lower:]') --section agent
sudo puppet config set waitforcert 60 --section agent
sudo puppet ssl bootstrap
Sign the certificate on Foreman
This can be done in one of two ways: via CLI on Foreman or via the GUI.
CLI
Ssh to the Foreman server and run this command, replacing <client hostname>
with the name of your puppet node.
sudo puppetserver ca sign --certname <client hostname>
Foreman GUI
Log into your Foreman server and navigate to Infrastructure > Smart Proxies > Select the Smart Proxy running Puppet CA > Puppet CA > Certificates