2015-10_Steps_to_Build_a_Standard_Operating_Environment.pdf

10 Steps to Build an SOE How Red Hat Satellite 6 Supports Setting up a Standard Operating Environment

Dirk Herrmann Principal Software Engineer

Benamin !ruell Senior Domain "rc#itect

$ersion 1%0 1&t# "ugust '01(

100 East Davie Street Raleigh NC 27601 USA Phone: +1 919 75 !700 Phone: """ 7!! 2"1 #a$: +1 919 75 !701 P% &o$ 1!5"" Resear'h (riangle Par) NC 27709 USA *in$ is a registere, tra,e-ar) o. *ins (orval,s/ Re, at Re, at Enterrise *in$ an, the Re, at 3Sha,o4-an3 logo are registere, tra,e-ar)s o. Re, at n'/ in the Unite, States an, other 'ontries/ i'roso.t an, in,o4s are U/S/ registere, tra,e-ar)s o. i'roso.t Cororation/ UN8 is a registere, tra,e-ar) o. (he %en ro/ ntel the ntel logo an, 8eon are registere, tra,e-ar)s o. ntel Cororation or its ssi,iaries in the Unite, States an, other 'ontries/ ;4are ;4are (ools vShere vCetner an, ES8i are registere, tra,e-ar)s o. ;4are n'/ Do')er an, the Do')er logo are tra,e-ar)s or registere, tra,e-ar)s o. Do')er n'/ (*< is a Registere, (ra,e ar) o. A8E*%S *i-ite,/

All other tra,e-ar)s re.eren'e, herein are the roert= o. their rese'tive o4ners/ > 2015 = Re, at n'/ (his -aterial -a= e ,istrite, onl= s?e't to the ter-s an, 'on,itions set .orth in the %en Pli'ation *i'ense ;1/0 or later @the latest version is resentl= availale at htt:444/oen'ontent/orgoen B/ (he in.or-ation 'ontaine, herein is s?e't to 'hange 4ithot noti'e/ Re, at n'/ shall not e liale .or te'hni'al or e,itorial errors or o-issions 'ontaine, herein/ Distrition o. -o,i.ie, versions o. this ,o'-ent is rohiite, 4ithot the e$li'it er-ission o. Re, at n'/ Distrition o. this 4or) or ,erivative o. this 4or) in an= stan,ar, @aerB oo) .or- .or 'o--er'ial roses is rohiite, nless rior er-ission is otaine, .ro- Re, at n'/ (he P .ingerrint o. the se'rit=re,hat/'o- )e= is: CA 20 "6 "6 2& D6 9D #C 65 #6 EC C 21 91 "0 CD D& 2 A6 0E

www%red#at%c www%red#at%com om

ii

refarc#)feed*ack+r refarc#)feed*ack+red#at%com ed#at%com

Executive Summary %ver ti-e the 'o-le$it= o. ( in.rastr'tres in'reases/ &sinesses that se, to rn on a s-all n-er o. h=si'al servers a ,e'a,e ago have ha, to a,, -ore servers to gro4 an, )ee  4ith ne4 te'hnolog=/ (he a,vent o. virtaliation a,,s another la=er o. 'o-le$it= to an alrea,= 'o-li'ate, -ltiven,or environ-ent/ (he reslt is an environ-ent that is ,i..i'lt to navigate an, 'ontrol an, in'reasing laor 'osts/ ith laor 'osts -a)ing  nearl= 60F o. overall ( in.rastr'tre 'osts the ri'e o. 'o-le$it= a,,s  Gi')l=/ Stan,ar,ie, oerating environ-ents hel sinesses oerate e..e'tivel= an, e..i'ientl=/ Re, at soltions rovi,e a,,itional ene.its s'h as i-rove, (otal Cost o. %4nershi @(C%B etter ( ro,'tivit= an, in'rease, agilit= 4hi'h all ,rive =or siness .or4ar,/ Re, at Enterrise *in$ 4ith Re, at Satellite rovi,es an i,eal lat.or- .or stan,ar,ie, oerating environ-ents 4ith lo4er (C% an, greater ( e..i'ien'= an, ro,'tivit=/ e 'an i-rove =or otto- line an, in'rease =or sinessH agilit= an, 'o-etitiveness/ (his soltion gi,e rovi,es an e$a-le o. an i-le-entation ase, on a sa-le 'sto-er s'enario that in'l,es a ,istrite, ,ata'enter toolog= sa-le ali'ations an, an e$a-le o. an ( organiation an, its roles/ t is an en,toen, stor= starting 4ith a .resh installation o. Satellite 6 an, a ste=ste 'on.igring o. all ne'essar= Satellite 6 entities  to an an,rnning in.rastr'tre 4ith servers an, ali'ations an, their ongoing -aintenan'e/ ost arts o. the set 'an e ato-ate, 4ith the o4er.l ha--er 'o--an,line inter.a'e 4hi'h is ,o'-ente, ,o'-ente, in this re.eren'e re.eren'e ar'hite'tre/ ar'hite'tre/ Nearl= Nearl= all Satellite Satellite entities are are 'overe,/ 'overe,/ #or the -ost 'riti'al ones @'ontent vie4s host gros an, li.e'='le environ-entsB -ltile s'enarios are illstrate,/ &= sing this 'o-rehensive ,o'-entation 'sto-ers 'an 'on.igre Re, at Satellite 6 in a 4a= that est .its their nee,s/ (he .ollo4ing se'tions rovi,e a rie. overvie4 o. ea'h o. the ten stes an, in'l,e the 'ore 'ontent ite-s the Satellite 6 entities 'overe, an, the a'hieve-ents .or ea'h ste/

Step 1, Set up -our S-stem .anagement /nfrastructure % Per.or- a asi' 'on.igration o. Sat6 an, its e-e,,e, Casle/ e also 'reate an organiation an, i-ort the ss'rition -ani.est/ Correson,ing Satellite 6 Entities: Satellite 6 /nstaller Organiation an, Su*scription .anifest Outcome: Io no4 have an an,rnning s=ste- -anage-ent in.rastr'tre an, =or Re, at ss'rition -ani.est loa,e, an, a'tivate,/ Step ', .ap -our 2ocation and Datacenter 3opolog-% 3opolog- % Con.igre t4o ,ata'enters 4ith ,i..erent n,erl=ing virtaliation lat.or-s @RE; an, RE*%SPB one 4ith a DJ/

refarc#)feed*ack+red#at%com

///

www%red#at%co www%red#at%com m

Correson,ing Entities: 4apsules an, their 'orreson,ing 2ocations Su*nets an, Domains/ Outcome: Io no4 have three ,i..erent Casles to -anage the three ,i..erent lo'ations/

Step 5, Define our Definitive .edia 2i*rar- 4ontent% -ort so.t4are 'ontent into Satellite 6 .o'sing on ,i..erent so.t4are entr= oints an, .or-ats/ (he 'ontent in'l,es RP a')ages an, Pet -o,les .or Re, at thir,art= an, 'sto- ali'ations/ Correson,ing Entities: Products Repositories  (hir,art= an, 'sto- 7P7 !e-s an, S-nc Plans/ Outcome: Io have ,e.ine, -ltile 'sto- an, thir,art= Pro,'ts an, Reositories s''ess.ll= i-orte, their 'orreson,ing 'ontent an, enale, 'ontinal ,ates o. 'ontent sing s=n'hroniation lans/ Step 8, Define -our 4ontent lifec-cle% lifec-cle % *earn the ,i..eren'es et4een content views an, composite content views / *earn ho4 to se the- an, lifec-cle environments to -at'h =or arti'lar s'enario/ Outcome: Io have 'reate, li.e'='le environ-ents an, their aths 4hi'h allo4 =o to segregate the ,ties o. the ,i..erent sta') la=ers @E$a-le: the %S an, the ali'ations rnning on to o. itB an, to 'reate in,een,ent release '='les .or ea'h o. the-/ Step (, Define -our 4ore Build% Build % De.ine =or %S,elo=-ent @'ore il,B 'on.igration an, its 'orreson,ing 'ontent ite-s/ Create lish an, ro-ote 'ontent vie4s sing sa-le Puppet modules 4onfig 7roups an, 4ontent $iews/ Outcome: Io have 'reate, t4o ,i..erent 'oreil, @%SB ,e.initions .or ali'ations rnning on to o. the %S/ (he 'ore il, 'onsists o. Re, at Enterrise *in$ thir,art= a')ages an, so-e sa-le Pet -o,les se, to -a)e the 'ore il, ,e.inition ,e.inition -ore .le$ile/ Step 6, Define our "pplication 4ontent% 4ontent % *earn aot ali'ation la=er 'ontent vie4s @ro.ilesB/ *earn ho4 to asse-le the- 4ith the Core &il, 'ontent vie4s .ro- Ste 5/ Io 'an also learn aot roles an, ro.iles an, the searation o. resonsiilities et4een the %S an, ali'ations/ Correson,ing Entities: Sa-le Puppet modules .or roles an, ro.iles 4onfig 7roups an, 4omposite 4ontent $iews/ Outcome, Io no4 have 5 ,i..erent ali'ations in'l,ing so-e 'o--on in.rastr'tre servi'es an, a t4otier 4e ali'ation/ Step 9, "utomate -our provisioning provisioning%% Con.igre the ato-ate, rovisioning to ,elo= the 'o-osite 'ontent vie4s 'reate, earlier/ *earn aot ,i..erent s'enarios .or host gros an, enhan'e, rovisioning that ses ,=na-i' artition tales an, #ore-an hoo)s/ Correson,ing Entities: P:E ; Boot /SO Provisioning 3emplates Host 7roups K "ctivation !e-s  7lo*al Parameters ; Smart 4lass Parameters an,

iv

refarc#)feed*ack+ refarc#)feed*ack+red#at%com red#at%com

Outcome, Io have 'on.igre, all entities reGire, to rovision ne4 servers an, to ,elo= the 'o-osite 'ontent vie4s 'reate, earlier = sing Satellite 6 rovisioning te-lates an, ara-eters/ Step =, .ap -our /3 organiati organiation on and roles to -our Satellite setup% setup % a t=i'al ( organiations an, roles to Satellite 6 roles an, the R&AC -o,el/ Correson,ing Entities: >sers ; >ser 7roups  Roles and RB"4 @roles er-issions .iltersB/ Outcome: Io have 5 sa-le roles that re.le't the t=i'al roles o. a t4o,i-ensional resonsiilit= -atri$/ (his -atri$ is se, to searate resonsiilities an, to re,'e the 'o-le$it= o. visile entities in the U/ Step &, .anage t#e 4ontent 2ifec-cle 4ontinuousl-% 4ontinuousl- % anage the Satellite 6 'ontent li.e'='le in'l,ing errata -anage-ent 'ontent vie4 ,ate oerations an, et -o,le 'hanges/ Correson,ing Entities: Errata .anagement  in'l,ing Errata noti.i'ation e-ails Content Dashoar, an, n're-ental U,ates/ Outcome: Io )no4 ho4 to e$e'te ,i..erent 'ontent ,ate s'enarios an, the ne4 errata -anage-ent .eatres o. Satellite 6/1/ Step 10, "utomate and e?tend -our setup otlines ossile enhan'e-ents @ase, on the set 'hosen in earlier stesB/ So-e e$a-les in'l,e: -orting e$isting hosts Using the host ,is'over= .eatres Using Satellite 6 to sort varios ( ro'esses/ Outcome, Io have so-e i,eas .or enhan'ing the set 'reate, in the earlier stes o. this ,o'-ent/


v


Table of Contents E$e'tive S--ar=////////////////////////// S--ar=///////////////////////////////////////////// ///////////////////////////////////////////// ///////////////////////////////////////// /////////////////// ////  Aot this Do'-ent////////////////////////////////// Do'-ent///////////////////////////////////////////////////// ///////////////////////////////////////////// ///////////////////////////////////// /////////// 1 (arget A,ien'e////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 1 ACE as a 'sto-er @an, 'ontentB 'ontentB ?orne=//////////// ?orne=//////////////////// ///////////////// ////////////////// ///////////////////////////////////////////// //////////////////////////////////// 2 Co--ents an, #ee,a')////////////////////////////////////////////////////////////////////////////////////////////////////// 2 Sta=ing n (o'h///////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 2 Re'o--en,e, Re, at (raining %..erings/////////////////////////////////////////////////////////////////////////// ! Re'o--en,e, Re, at Conslting %..erings///////////////////////////////////////////////////////////////////////  *egal Dis'lai-er/////////////////////////////////////////////////////////////////////////////////////////////////////////////////////  A')no4le,g-ents/////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 5

ntro,'tion//////////////// ntro,'tion/////////////////////////////////// ////////////////////////////////////// ////////////////////////////////////// ////////////////////////////////////// //////////////////////////////// ///////////// 6 Stan,ar, Stan,ar, %erating %erating Environ-ent Environ-ent @S%EB %vervie4///////////// %vervie4////////////////////// ///////////////////////////////// ///////////////////////////////////////// ///////////////// 6 Re, at Satellite 6 %vervie4//////////// %vervie4///////////////////// ///////////////// ///////////////// ////////////////// ////////////////// ////////////////// ///////////////////////////////////////// //////////////////////////////// " Re, at Satellite 6 S=ste- Ar'hite'tre////////////////////////////////////////////////////////////////////////////// 10 ACE ntro//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 11 ACE ( %rganiation %vervie4/////////////////////////////////////////////////////////////////////////////////////// ACE Data'enter (oolog= %vervie4/////////////////////////////////////////////////////////////////////////////// ACE Ali'ation Ar'hite'tre %vervie4////////////////////////////////////////////////////////////////////////// Na-ing Conventions %vervie4////////////////////////////////////////////////////////////////////////////////////////////

12 1! 1 15

Ste 1: Set  =or S=ste- anage-ent anage-ent n.rastr'tre//////////////////////////// n.rastr'tre////////////////////////////////// ////// 16 nstalling Re, at Satellite 6/1///////////////////////////////////////////////////////////////////////////////////////////// 16 Satellite 6 nstallation//////////////////////////////////////////////////////////////////////////////////////////////////////////// 17 DNS DCP an, (#(P Re'o--en,ations////////////////////////////////////////////////////////////////////// 17 Re, at Content Deliver= Net4or) @CDNB//////////////// @CDNB///////////////////////// ////////////////// //////////////////// ////////////////////////////////////// /////////////////////////// 19 a--er Co--an, *ine nter.a'e/////////////////////////////////////////////////////////////////////////////////////// 20 nstall an, Con.igre a--er on a Re-ote ost///////////////////////////////////////////////////////////// 21 Creating a Ne4 Satellite 6 %rganiation////////////////////////////////////////////////////////////////////////////// 22 -orting =or Re, at Ss'rition ani.est///////////////////////////////////////////////////////////////////// 2 Setting U Ior Revision Control Server @gitB////////////////////////////////////////////////////////////////////// 25 Setting U Ior onitoring Server/////////////////////////////////////////////////////////////////////////////////////// 26


vi


Ste 2: a =or *o'ation an, Data'enter (oolog=/////////////////////////////////////// 27 Re, at Satellite 6 Casle Server %vervie4///////////////////////////////////////////////////////////////////// 2" Sa-le Data'enter (oolog= S'enarios////////////////////////////////////////////////////////////////////////////// !0 S'enario AB Centralie, anage-ent  %ne Re, at Satellite .or All Seg-ents///////////// !0 S'enario &B Segregate, Net4or) Jones ithin a Data'enter////////////////////////////////////////// !1 S'enario CB eograhi'all= Searate *o'ations////////////////////////////////////////////////////////////// !2 S'enario DB Dis'onne'te,  solate,///////////////////////////////////////////////////////////////////////////////// !! Sa-le ACE Data'enter S'enario//////////////////////////////////////////////////////////////////////////////////// !! *o'ations////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// ! Re, at Satellite 6 Co-te Resor'es///////////////////////////////////////////////////////////////////////////// !6 Con.igring Ior ;irtaliation an, Clo, n.rastr'tres as Co-te Resor'es////////// !7 *o'ation ni'h: Con.igring RE; as Co-te Resor'e//////////////////////////////////////////// !" *o'ation &oston: Con.igring RE* %enSta') Plat.or- as a Co-te Resor'e//////// 0 Con.igring ;4are vShere as a Co-te Resor'e//////////////////////////////////////////////////// 2 Do-ains//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// ! Snets/////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////  Re, at Casle nstallation//////////////////////////////////////////////////////////////////////////////////////////////// 7 Sa-le Casle 1: ni'h DJ in the RE; Data'enter/////////////////////////////////////////////// 7 Sa-le Casle 2: &oston Re-ote *o'ation Using RE* %enSta') Plat.or-///////////// 5 User Data/////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 55

Ste !: De.ine Ior De.initive e,ia *irar= Content////////////////////////////////////// 6! So.t4are Entr= Points an, #or-ats////////////////////////////////////////////////////////////////////////////////////// 6! Satellite Content (=es///////////////////////////////////////////////////////////////////////////////////////////////////////// 6 Satellite Pro,'ts an, Reositories///////////////////////////////////////////////////////////////////////////////////// 65 Re, at Satellite Pro,'t an, Reositor= Re'o--en,ations//////////////////////////////////////////// 65 Pro,'t an, Reositories Na-ing Conventions////////////////////////////////////////////////////////////////// 66 P Le=s .or Re, at (hir,art= an, Csto- So.t4are////////////////////////////////////////////////// 67 Re, at P Le=s//////////////////////////////////////////////////////////////////////////////////////////////////////////// (hir,art= P Le=s//////////////////////////////////////////////////////////////////////////////////////////////////////// Csto- P Le=s///////////////////////////////////////////////////////////////////////////////////////////////////////////// -orting P Le=s into Satellite 6////////////////////////////////////////////////////////////////////////////////// -orting Re, at So.t4are into Satellite 6/////////////////////////////////////////////////////////////////////////

6" 6" 6" 69 70

o4 to Enale Re, at So.t4are Reositories///////////////////////////////////////////////////////////////// 70 Sele'ting the Aroriate Reositories///////////////////////////////////////////////////////////////////////////// 72 S=n'hronie Reositories////////////////////////////////////////////////////////////////////////////////////////////////// 7!


vii

www%red#at%com

-orting @RPB Pa')age, (hir,art= So.t4are into Satellite 6//////////////////////////////////////// 76 Creating a ne4 ro,'t in Re, at Satellite////////////////////////////////////////////////////////////////////// 76 Sitation 1/ -orting (hir,art= RP Pa')ages .ro- an E$isting =- Reositor=/////// 77 Sitation 2/ -orting (hir,art= RP Pa')ages ithot an E$isting =- Reositor=// 7" -orting %ther @Not RPa')age,B So.t4are into Satellite 6////////////////////////////////////////// "0 Delo=ing Una')age, #iles Using Pet @as Part o. Satellite 6B////////////////////////////////// "1 Pa')aging as RP an, Delo=ing Using Satellite 6 So.t4are anage-ent/////////////////// "1 -orting Pet Content into Satellite 6///////////////////////////////////////////////////////////////////////////// "1 -orting Do')er Container -ages into Satellite 6///////////////////////////////////////////////////////////// " Con.igring Reglar Reositor= S=n'hroniation = Using S=n' Plans////////////////////////////// "5

Ste : De.ine =or Content li.e'='le/////////////////////////////////////////////////////////////// "" Satellite 6 Content ;ie4s////////////////////////////////////////////////////////////////////////////////////////////////////// "" Satellite 6 Content ;ie4 *i.e'='le %vervie4//////////////////////////////////////////////////////////////////////// "9 Content ;ie4 an, Co-osite Content ;ie4 S'enarios/////////////////////////////////////////////////////// 90 S'enario AB (he MAll in one Content ;ie4//////////////////////////////////////////////////////////////////////// 91 S'enario &B ostSe'i.i' or Server (=e Content ;ie4s///////////////////////////////////////////////// 92 S'enario CB ost Se'i.i' Co-osite Content ;ie4s/////////////////////////////////////////////////////// 9 S'enario DB Co-onent&ase, Co-osite Content ;ie4s////////////////////////////////////////////// 95 Satellite 6 Content ;ie4 Re'o--en,ations//////////////////////////////////////////////////////////////////////// 96 o4 #ilters or)//////////////////////////////////////////////////////////////////////////////////////////////////////////////// 96 Re'o--en,ations .or #ilters///////////////////////////////////////////////////////////////////////////////////////////// 97 Re'o--en,ations .or Content ;ie4s/////////////////////////////////////////////////////////////////////////////// 97 Re'o--en,ations .or Co-osite Content ;ie4s @CC;B////////////////////////////////////////////////// 9" ltile Snashots @ClonesB o. Content ;ie4s///////////////////////////////////////////////////////////////// 9" CC;s in a De,i'ate, *i.eC='le Environ-ent/////////////////////////////////////////////////////////////////// 99 o4 Content ;ie4s 4or) 4ith Pro,'ts an, Reositories//////////////////////////////////////////////// 99 Content ;ie4 Na-ing Conventions//////////////////////////////////////////////////////////////////////////////////// 10! &asi' i,elines .or Na-ing Conventions////////////////////////////////////////////////////////////////////// 10! Content ;ie4s ;erss Co-osite Content ;ie4s/////////////////////////////////////////////////////////// 10 o4 to Na-e Co-onentsPro.iles @ase, on C;sB////////////////////////////////////////////////////// 10 o4 to na-e #inal Delo=-ent Con.igrationsRoles @ase, on CC;sB/////////////////////// 10 (=i'al li.e'='le stages/////////////////////////////////////////////////////////////////////////////////////////////////////// 105 Re, at Satellite li.e'='le Environ-ents/////////////////////////////////////////////////////////////////////////// 105 (he Se'ial Role o. the *irar=////////////////////////////////////////////////////////////////////////////////////////// 105 (he Se'ial Role o. the RE* Core &il,////////////////////////////////////////////////////////////////////////// 106 *i.e'='le Se'i.i' A,atations//////////////////////////////////////////////////////////////////////////////////////////// 106

www%red#at%com

viii


(=i'al *i.e'='le Environ-ent S'enarios/////////////////////////////////////////////////////////////////////////// 107 S'enario AB %ne li.e'='le stage .or ever=thing//////////////////////////////////////////////////////////////// 107 S'enario &B %ne *i.e'='le Environ-ent Path .or All As an, %S///////////////////////////////// 10" S'enario CB ,e,i'ate, li.e'='le ath .or arti'lar ali'ations////////////////////////////////////// 110 S'enario DB Deviant *i.e'='le Paths ReGire an %verall aing///////////////////////////////// 111 ACE S'enario/////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 111

Ste 5: De.ine =or Core &il,/////////////////////////////////////////////////////////////////////// 11! &ene.its o. Re, at Enterrise *in$ .or Core &il,s//////////////////////////////////////////////////////// 11! Re, at A& an, AP 'o-atiilit= 'o--it-ent////////////////////////////////////////////////////////////// 11 Core &il, %vervie4/////////////////////////////////////////////////////////////////////////////////////////////////////////// 115 Core &il, Re'o--en,ations//////////////////////////////////////////////////////////////////////////////////////////// 115 o4 to De.ine Ior Core &il,s///////////////////////////////////////////////////////////////////////////////////////// 119 Core &il, Na-ing 'onventions///////////////////////////////////////////////////////////////////////////////////////// 120 Core &il, So.t4are Reositories////////////////////////////////////////////////////////////////////////////////////// 121 ACE Core &il, Sa-le Pet o,les/////////////////////////////////////////////////////////////////////// 12! Sa-le Pet o,le .or et'-ot, #ile/////////////////////////////////////////////////////////////////////// 12 Sa-le Pet o,le .or A,,itional RP Pa')ages/////////////////////////////////////////////////// 126 Sa-le Pet o,le .or the nt Con.igration/////////////////////////////////////////////////////////// 127 Sa-le Pet o,le: Jai$ onitoring Agent Con.igration//////////////////////////////////// 127 Sa-le Pet o,le .or rs=slog Con.igration @here: 'lientB////////////////////////////////////// 12" Pet *as o,les st,li an, 'on'at////////////////////////////////////////////////////////////////////////// 12" A,,ing All Core &il, Pet o,les to the Core &il, Content ;ie4///////////////////////// 129 Re, at Satellite 6 Con.ig ros///////////////////////////////////////////////////////////////////////////////////// 129 Na-ing Conventions//////////////////////////////////////////////////////////////////////////////////////////////////////// 1!0 Core &il, Con.ig ro////////////////////////////////////////////////////////////////////////////////////////////////// 1!0 Plishing an, Pro-oting the Core &il, Content ;ie4s////////////////////////////////////////////////// 1!1

Ste 6: De.ine Ior Ali'ation Content///////////////////////////////////////////////////////// 1!7 ACEOs Sa-le Ali'ation Ar'hite'tre/////////////////////////////////////////////////////////////////////////// 1!" Sa-le Ali'ation 1: git Server//////////////////////////////////////////////////////////////////////////////////////// 1!9 E$a-le: Pet o,le .or git @Server an, ClientB/////////////////////////////////////////////////////// 1!9 Content ;ie4 .or git Server Pro.ile/////////////////////////////////////////////////////////////////////////////////// 10 Co-osite Content ;ie4 .or the gitserver Role/////////////////////////////////////////////////////////////// 17 Sa-le Ali'ation 2: Container ost//////////////////////////////////////////////////////////////////////////////// 151 Sa-le Pet o,le .or Do')er ost Co-te Resor'e///////////////////////////////////////// 152 Content ;ie4 .or Do')er Pro.ile/////////////////////////////////////////////////////////////////////////////////////// 152


i?

www%red#at%com

Co-osite Content ;ie4 .or Containerhost Role//////////////////////////////////////////////////////////// 15! Postnstallation oo) .or Containerhost///////////////////////////////////////////////////////////////////////// 15 Sa-le Ali'ation !: Central loghost Server//////////////////////////////////////////////////////////////////// 15 Sa-le Ali'ation : Satellite 6 Casle////////////////////////////////////////////////////////////////////////// 155 Content ;ie4 .or Satellite 6 Casle Pro.ile//////////////////////////////////////////////////////////////////// 155 Co-osite Content ;ie4 .or Satellite 6 Casle Role//////////////////////////////////////////////////// 156 Sa-le Ali'ation 5: ACE esite//////////////////////////////////////////////////////////////////////////////// 157 Sa-le Pet o,le .or ariaD& server ro.ile///////////////////////////////////////////////////////// 15" Sa-le Pet o,le .or ACE e Role////////////////////////////////////////////////////////////////// 159 ACE e Con.ig ros////////////////////////////////////////////////////////////////////////////////////////////// 159 Content ;ie4 .or ariaD& Pro.ile//////////////////////////////////////////////////////////////////////////////////// 161 Content ;ie4 .or the or,Press ro.ile/////////////////////////////////////////////////////////////////////////// 162 Co-osite Content ;ie4 .or ACE e Role//////////////////////////////////////////////////////////////// 16!

Ste 7: Ato-ate =or rovisioning//////////////////////////////////////////////////////////////// 166 Provisioning Re'o--en,ations///////////////////////////////////////////////////////////////////////////////////////// 166 Provisioning etho,s///////////////////////////////////////////////////////////////////////////////////////////////////////// 172 Para-eters///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 17! loal Para-eters/////////////////////////////////////////////////////////////////////////////////////////////////////////// 17 S-art Class Para-eters////////////////////////////////////////////////////////////////////////////////////////////////// 176 De.ine loal Para-eters/////////////////////////////////////////////////////////////////////////////////////////////// 176 (e-lates/////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 179 (e-late t=e overvie4:////////////////////////////////////////////////////////////////////////////////////////////////// 179 Clone a Provisioning (e-late//////////////////////////////////////////////////////////////////////////////////////// 1"1 Partition (ales/////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 1"! Create the Csto- Partition (ale/////////////////////////////////////////////////////////////////////////////////// 1" Provisioning Set////////////////////////////////////////////////////////////////////////////////////////////////////////////// 1"" Provisioning or).lo4//////////////////////////////////////////////////////////////////////////////////////////////////////// 197 %neti-e a'tions////////////////////////////////////////////////////////////////////////////////////////////////////////////// 19" Reeatale a'tions////////////////////////////////////////////////////////////////////////////////////////////////////////// 19" #ore-an oo)s////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 202 #ore-an oo) S'rit Sa-le 1: Containerhost////////////////////////////////////////////////////////////// 20! #ore-an oo) S'rit Sa-le 2: Ne4 ost Noti.i'ation////////////////////////////////////////////////// 20 #ore-an oo) S'rit Sa-le 2: (S (ool ntegration @onitoringB////////////////////////////// 20 A'tivation Le=s/////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 205 Na-ing Conventions//////////////////////////////////////////////////////////////////////////////////////////////////////// 205 Create A'tivation Le=s///////////////////////////////////////////////////////////////////////////////////////////////////// 206

www%red#at%com

?


Satellite 6 ost ros %vervie4////////////////////////////////////////////////////////////////////////////////////// 217 Satellite 6 ost ro S'enarios/////////////////////////////////////////////////////////////////////////////////////// 222 S'enario AB #lat ost ro Str'tre//////////////////////////////////////////////////////////////////////////// 22! S'enario &B *i.e'='leEnviron-ent #o'se, ierar'hi'al Str'tre/////////////////////////////// 22 S'enario CB &siness ;ie4///////////////////////////////////////////////////////////////////////////////////////////// 225 S'enario DB *o'ation ase,//////////////////////////////////////////////////////////////////////////////////////////// 225 Create ost ros///////////////////////////////////////////////////////////////////////////////////////////////////////// 226 Provisioning a ne4 host///////////////////////////////////////////////////////////////////////////////////////////////////// 26

Ste ": a =or ( organiation an, roles to =or Satellite set//////////////// 251 o4 Re, at Satellite *ets Io Searate Resonsiilities/////////////////////////////////////////////// 251 Satellite Users an, *DAP Athenti'ation/////////////////////////////////////////////////////////////////////////// 252 Re, at Satellite 6 Role&ase, A''ess Control//////////////////////////////////////////////////////////////// 252 Satellite 6 R&AC Re'o--en,ations///////////////////////////////////////////////////////////////////////////////// 25! De.ine the E$e'te, (as)s an, Resonsiilities///////////////////////////////////////////////////////////// 25! Start S-all an, A,, Per-issions Ste = Ste////////////////////////////////////////////////////////////// 25! Use Sear'h #ilters to *i-it the A-ont o. Detail///////////////////////////////////////////////////////////// 25 Consi,er Se'on,ar= Entities A..e'te, = a Parti'lar E$e'tion//////////////////////////////////// 25 Use Pre,e.ine, Roles herever Possile////////////////////////////////////////////////////////////////////// 25 R&AC #o'ses on Role Shaing &t Not Se'rit= 'ontrol///////////////////////////////////////////// 25 (=i'al 'ontent K *i.e'='le Role (=es////////////////////////////////////////////////////////////////////////////// 25 ACE ( %rganiation E$a-le///////////////////////////////////////////////////////////////////////////////////////// 255 Sa-le Role 1: Satellite A,-in/////////////////////////////////////////////////////////////////////////////////////// 257 Sa-le Role 2: ( %erations anager @Rea,onl= RoleB////////////////////////////////////////////// 25" Sa-le Role !: *i'ense anage-ent %4ner///////////////////////////////////////////////////////////////// 259 Sa-le Role : Core &il, @%SB S=ste-s Engineering////////////////////////////////////////////////// 262 Sa-le Role 5: alit= Assran'e @AB///////////////////////////////////////////////////////////////////////// 266

Ste 9: anage the Content *i.e'='le Continosl=////////////////////////////////////// 271 Re, at Errata %vervie4/////////////////////////////////////////////////////////////////////////////////////////////////// 271 Content Change Reorting///////////////////////////////////////////////////////////////////////////////////////////////// 272 Errata Noti.i'ation E-ails/////////////////////////////////////////////////////////////////////////////////////////////////// 272 Satellite 6 Content Dashoar, an, Errata %vervie4///////////////////////////////////////////////////////// 27! Satellite 6 Errata anage-ent %vervie4/////////////////////////////////////////////////////////////////////////// 27! Use Case 1B U,ating the Core &il,//////////////////////////////////////////////////////////////////////////////// 27! 1/ U,ate the Core &il, Content ;ie4/////////////////////////////////////////////////////////////////////////// 27 2/ U,ate the A..e'te, Co-osite Content ;ie4s/////////////////////////////////////////////////////////// 275 refarc#)feed*ack+red#at%com

?i

www%red#at%com

!/ Pro-ote the Co-osite Content vie4 (hrogh the Correson,ing *i.e'='le Stages 276 / U,ate All A..e'te, osts (hat &elong to the Correson,ing ost ros/////////////// 276 Use Case 2B Ne4 ;ersion o. the Ali'ation C; 4ith an Un'hange, Core &il,///////////// 27" Use Case !B Core &il, an, Ali'ation C;s U,ate, Si-ltaneosl=//////////////////////////// 279 Use Case B n're-ental U,ates  Al= Sele'te, Errata to osts///////////////////////////////// 279 Use Case 5B A,,ing a Ne4 Pet o,le to an E$isting Content ;ie4///////////////////////// 2"2 A,,ing a Ne4 ;ersion or a Ne4 Class//////////////////////////////////////////////////////////////////////////// 2"! / Optional : A,, the Ne4 Pet Classes to a Con.ig ro///////////////////////////////////////// 2"5 5/ A,, the Ne4 Pet Classes to All ost ros 4ith hi'h the A,ate, C; is Asso'iate,//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 2"5

Ste 10: Ato-ate an, e$ten, =or set///////////////////////////////////////////////////// 2"7 (al) to sQ//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// 2"7 -orting e$isting hosts////////////////////////////////////////////////////////////////////////////////////////////////////// 2"7 -rove =or are -etal rovisioning sing the Dis'over= Plgin//////////////////////////////////// 2"" ntegration o. &a') anage-ent an, S=ste-s anage-ent/////////////////////////////////////// 2"9 o4 Satellite 6 Sorts Ior Se'rit= anage-ent Pro'ess///////////////////////////////////////// 290 o4 Satellite 6 Sorts Ior Servi'e ;ali,ation K (esting @AB Pro'ess/////////////////////// 290 o4 Satellite 6 Sorts Ior Asset K Con.igration anage-ent Pro'ess/////////////////// 291 o4 Satellite 6 Sorts Ior n'i,ent anage-ent Pro'ess////////////////////////////////////////// 291

Aen,i$   Sa-le Pet o,les se, insi,e///////////////////////////////////////// 292 Sa-le Pet -o,le .or nt 'on.igration////////////////////////////////////////////////////////////////// 292 Sa-le Pet o,le .or Jai$ onitoring agent 'on.igration//////////////////////////////// 295 Sa-le Pet o,le .or rs=slog 'on.igration @oth 'lient an, serverB////////////////////// !02 Sa-le Pet o,le .or a,,itional r- a')ages: 'oreil,a')ages///////////////////// !0" Sa-le Pet o,le .or Do')er 'on.igration//////////////////////////////////////////////////////////// !0" Sa-le Pet o,le .or git 'on.igration @oth 'lient an, serverB///////////////////////////// !10 Sa-le Pet o,le .or rhevagent///////////////////////////////////////////////////////////////////////////// !1 Sa-le Pet o,le .or v-4aretools///////////////////////////////////////////////////////////////////////// !15 Sa-le Pet o,le .or a'-e4e @.ronten, an, a')en,B/////////////////////////////////////// !16

Aen,i$ : S'rits///////////////////////////////////////////////////////////////////////////////////////// !22 #ore-an oo) 1: 05'ontainerhost/sh////////////////////////////////////////////////////////////////////////////// !22 #ore-an oo) 2: 10logger/sh////////////////////////////////////////////////////////////////////////////////////////// !2! #ore-an oo) !: 01ai$host'reate/sh//////////////////////////////////////////////////////////////////// !2!

Aen,i$ : Na-ing Convention/////////////////////////////////////////////////////////////////// !26 www%red#at%com

?ii


Aen,i$ ;: So.t4are ;ersions %vervie4///////////////////////////////////////////////////// !2" Aen,i$ ;: Contritor *ist/////////////////////////////////////////////////////////////////////////// !!0


?iii

www%red#at%com

About this Document (he ri-ar= goal o. this soltion gi,e is to rovi,e an end)to)end e?ample of software lifec-cle management using Red Hat Satellite 6 / t is ase, on an sample customer scenario in'l,ing sa-le ali'ation ar'hite'tre sa-le ,ata'enter toolog= an, ( organiation an, roles/ eOve trie, to ,es'rie a si-le t realisti' s'enario an, to e$lain all -an,ator= an, a,,itionall= so-e a,van'e, Satellite 6 'aailities an, its 'on.igration/ %r .o's has een -ore on the M4h= instea, o. the Mho4/ (here.ore a signi.i'ant roortion o. this soltion gi,e is 'o--itte, to e?plain t#e non)tec#nical concepts ehin,/ Nevertheless an, given the 'hara'teristi's o. a Re, at Re.eren'e Ar'hite'tre  Soltion i,e the i-le-entation has een engineere, 'on.igre, an, vali,ate, in or la/ So-e tools se, an, ite-s ,o'-ente, insi,e are not 'overe, = Re, atOs loal Sort Servi'es sort 'ontra'ts an, 'overage/ eOve -ar)e, all ite-s 4hi'h are not sorte, = Re, at loal Sort Servi'es to avoi, 'on.sion aot it/ eOve trie, to rovi,e in ea'h arti'lar area different potential scenarios to ,eal 4ith an, their a,vantages an, ,isa,vantages/ n ea'h o. these areas 4eOve i')e, one scenario an, documented its tec#nical implementation / ost o. the ato-ation 4eOve se, an, rovi,e, insi,e this soltion gi,e is ase, on a naming convention 4hi'h 4ill e e$laine, in ,etail ea'h ti-e it is se, it an, s--arie, at the en, o. this ,o'-ent/

Target Audience (he target a,ien'e o. this soltion gi,e are ri-aril= customers and partners w#o are new to Satellite 6 / A,,itionall= 4e tr= to hel arc#itects in different areas o. resonsiilit= an, interest to -a)e so-e general ,esign ,e'isions i. the=Ove not een -a,e =et/ (he -ltile s'enarios ,es'rie, in ea'h se'tion are sose, to let the a,ien'e ,e'i,e 4hi'h o. these s'enarios an, in 'onsi,eration o. the ,o'-ente, a,vantages an, ,isa,vantages are the est .it .or their environ-ent or s'enario/ A,,itionall= 4e ,es'rie the te'hni'al i-le-entation o. one 'o-lete 'on.igration to satis.= the nee,s o. eole resonsile .or the tec#nical implementation as 4ell/ (he ,o'-entation o. C* ase, i-le-entation is sose, to hel 'sto-ers -ore .o'sing on ato-ation or integration o. Satellite 6 'aailities into their environ-ent/


1

www%red#at%com

ACME as a customer (and content) journey (he i,ea o. sing an sa-le 'o-an= 4ith a ver= li-ite, 'o-le$it= an, ,e'lare, as ?st .on,e, is to rovi,e a customer ourne- w#ic# will *e e?panded over time / (his soltion gi,e is sose, to e'o-e )in, o. a starting oint or foundation document 4hile other stes o. this 'sto-er ?orne= 4ill .ollo4 over ti-e/ De to resor'e an, ti-e li-itations an, to re,'e the 'o-le$it= an, 'ontent length o. this ,o'-ent 4eOve ha, to ,e.ine so-e toi's 4hi'h are ot o. s'oe .or this ,o'-ent/ (he rose o. the .ollo4ing list o. e$'l,e, toi's is to avoi, ,isaointe, rea,ers 4ho are ri-aril= loo)ing .or these toi's 4e ,o not 'over insi,e this soltion gi,e/ (he .ollo4ing Re, at Satellite 'aailities are either onl= 'overe, ver= ser.i'iall= or not at all:       

Re, at Satellite 6 -ltiorg 'aailities Re, at Satellite 6 'o-te ro.iles Re, at Satellite 6 Dis'over= .eatre oenSCAP 'aailities o. Satellite 6/1 Re, at A''ess nsights 'aailities o. Satellite 6/1 Ss'rition anage-ent sing virt4ho Do')er -ager anage-ent 'aailities o. Satellite 6/1

So-e other areas are so 'o-le$ .or its o4n an, are 4orth to e 'overe, in -ore ,etails that 4e 'onsi,er to 4rite ,e,i'ate, ,o'-ents targeting these a,van'e, se 'ases or s'enarios/ (he goal o. Ste 10 is to rovi,e so-e i,eas aot these a,van'e, s'enarios 4e -ight 4ill 'over in 'o-ing ,o'-ents/

Comments and Feedback n the sirit o. oen sor'e 4e invite an=one to rovi,e .ee,a') an, 'o--ents on an= soltion gi,es/ Althogh 4e revie4 or aers internall= so-eti-es isses or t=ograhi'al errors are en'ontere,/ #ee,a') allo4s s to not onl= i-rove the Galit= o. the aers 4e ro,'e t allo4s the rea,er to rovi,e their thoghts on otential i-rove-ents an, toi' e$ansion to the aers/ #ee,a') on the aers 'an e rovi,e, = e-ailing re.ar'h.ee,a') re,hat /'o-/ Please re.er to the title 4ithin the e-ail/

Staying In Touch Toin s on so-e o. the olar so'ial -e,ia sites 4here 4e )ee or a,ien'e in.or-e, on ne4 re.eren'e ar'hite'tres an, soltion gi,es as 4ell as o..er relate, in.or-ation on things 4e .in, interesting/

www%red#at%com

'


*i)e s on #a'eoo): htts: 444/.a'eoo)/'o- rhre.ar'h #ollo4 s on (4itter: htts: t4itter/'o-Re,atRe.Ar'h Pls s on oogle+: htts: ls /google/'o-0 111521267"!"!072"0!0

Recommended Red Hat Training !!erings A''o-an=ing to this soltion gi,e Re, at o..ers an, re'o--en,s varios trainings an, 'erti.i'ations aron, the toi's ,is'sse, insi,e this ,o'-ent/ (he .ollo4ing Re, at training 'orses are re'o--en,e, an, 'over te'hnologies se, in the re.eren'e gi,e::

Red Hat Satellite 6 "dministration ) RH 805 Re, at Satellite 6 A,-inistration is a laase, 'orse that e$lores the 'on'ets an, -etho,s ne'essar= .or s''ess.l larges'ale -anage-ent o. Re, at< Enterrise *in$< s=ste-s/ Corse arti'iants 4ill learn ho4 to install Re, at Satellite 6 on a server an, olate it 4ith so.t4are a')ages/ #rther Details: htts: 444/re,hat /'o-enservi'estraining rh0! re,hat  satellite 6 a,-inistration

Red Hat Server Hardening ) RH 815 Re, at< Server ar,ening @R1!B il,s on a st,entHs Re, at Certi.ie, Engineer @RCE
Red Hat 4ertified S-stem "dministrator 4ertification Pat# An ( ro.essional 4ho has earne, the Re, at Certi.ie, S=ste- A,-inistrator @RCSAB is ale to er.or- the 'ore s=ste- a,-inistration s)ills reGire, in Re, at Enterrise *in$ environ-ents/ (he 're,ential is earne, a.ter s''ess.ll= assing the Re, at Certi.ie, S=ste- A,-inistrator @RCSAB E$a- @E8200B/ #rther Details: htts: 444/re,hat /'o- en servi'es 'erti.i'ationrh'sa refarc#)feed*ack+red#at%com

5

www%red#at%com

Red Hat 4ertified Engineer 4ertification Pat# A Re, at< Certi.ie, Engineer @RCE
Recommended Red Hat Consu"ting !!erings Re, at Conslting has re.ine, an ato-ate, -o,lar enterrise.o'se, 'on.igration -anage-ent strateg= that gives =o .ll visiilit= an, 'ontrol a'ross =or environ-ents/ (here are varios o..erings availale 4hi'h are 'o-le-entar= to this soltion gi,e an, ri-aril= .o'sing on ,esign il, an, ,elo= an S%E to allo4:    

Sea-lessl= a,ot ne4 siness initiatives lat.or-s servi'es an, 'aailities/ Re,'e ti-e to i-le-entation/ Estalish stan,ar, -o,lar .le$ile an, ato-ate, ro'esses/ itigate the 'ost o. 'hanging siness ,rivers/

#rther in.or-ation in'l,ing 4hiteaer ,atasheets an, 'sto-er re.eren'es 'ol, e .on, here: htt : 444/re,hat /'o- en servi'es 'onsltingin.rastr'tre stan,ar,ie

#ega" $isc"aimer (his soltion gi,e has een rovi,e, = Re, at t so-e arts o. it are otsi,e the s'oe o. the oste, Servi'e *evel Agree-ents an, sort ro'e,res @htts:a''ess/re,hat/'o-sorto..eringsro,'tionB/ (he in.or-ation is rovi,e, asis an, an= 'on.igration settings or installe, ali'ations -a,e .ro- the in.or-ation in this arti'le 'ol, -a)e the %erating S=ste- nsorte, = Re, at loal Sort Servi'es/ (he intent o. this soltion gi,e is to rovi,e in.or-ation to a''o-lish the s=ste-Hs nee,s/ Use o. the in.or-ation in this arti'le at the serHs o4n ris)/ Pri-aril= thir, art= so.t4are 'o-onents se, to re.le't a t=i'al 'sto-er environ-ent are e$'l,e, .ro- eing sorte, = Re, at/ A,,itionall= the s'rits se, an, rovi,e, insi,e this soltion gi,e are not sorte, = Re, at an, ,istrite, 4ithot an= 4arrant=/ Ea'h ti-e a otentiall= nsorte, ite- is 'overe, a ,e,i'ate, ,is'lai-er has een a,,e, to the a..e'te, se'tion/

www%red#at%com

8


Ackno%"edgments Even i. there are t4o athors liste, on the 'over age this re.eren'e is ase, on the i,eas an, 'ontritions o. -an= talente, an, highl= s)ille, eole insi,e an, otsi,e o. Re, at/ (he 'ontent is ase, on a longter- e$erien'e o. varios 'ontritors gathere, over =ears an, in a hge n-er o. ro?e'ts/ riting ,o4n these i,eas revie4ing an, lishing it 4ol, not have een ossile 4ithot the vale, int 'reativit= an, gi,an'e rovi,e, = a lot o. ,i..erent eole/ eOve trie, to a,, a 'o-lete list o. 'ontritors insi,e "ppendi? $, 4ontri*utor 2ist/ e 4ol, li)e to than) ea'h an, ever=one -entione, in this list/


(

www%red#at%com

Introduction (he .ollo4ing 'hater rovi,es an overvie4 o. so-e i-ortant ite-s that are e$laine, in -ore ,etail 4ithin the soltion gi,e/

Standard &erating En'ironment (SE) 'er'ie% ith a variet= o. oerating s=ste- ven,ors an, versions server har,4are 'on.igrations an, -anage-ent so.t4are tools s=ste- an, in.rastr'tre a,-inistration e'o-es ,i..i'lt at est/ (his 'o-le$it= reGires a large ( sta.. 4ith ,ee e$ertise in all areas o. the environ-ent .rther in'reasing 'osts/ n a,,ition to interoerailit= isses these -anage-ent 'hallenges lea, to in'rease, ,o4nti-e an, availailit= 'on'erns 4ith less visiilit= an, 'ontrol o. assets/ (hese isses in'rease se'rit= an, 'o-lian'e ris)s/ hen =o have a -ltit,e o. ,isarate ro'esses .or ea'h 'on.igration or oerating s=ste- version the ro'ess o. rovisioning ne4 tools ali'ations virtal -a'hines an, servers e'o-es slo4 an, te,ios an, o.ten hin,ers ( an, siness agilit=/ an= o. these isses 'an e greatl= ,i-inishe, or even eli-inate, = re,'ing 'o-le$it= an, stan,ar,iing art or all o. the ( environ-ent on a set o. ro'esses an, ro'e,res/ anage-ent is si-li.ie, in a stan,ar,ie, oerating environ-ent @S%EB signi.i'antl= in'reasing ( sta.. ro,'tivit= an, s'alailit=/ &e'ase laor 'osts 'ontrite signi.i'antl= to overall ( 'osts i-roving sta.. e..i'ien'= an, ro,'tivit= 'an lea, to 'o-elling savings an, a lo4er total 'ost o. o4nershi @(C%B/ Stan,ar, oerating environ-ents also ene.it ser ro,'tivit= in ter-s o. in'rease, availailit= o. servi'es an, less ,o4nti-e/ ith stan,ar, oerating ro'esses an, ro'e,res ali'ations virtal -a'hines an, har,4are 'an all e ,elo=e, an, 'on.igre, Gi')l= in'reasing .le$iilit= s'alailit= an, siness agilit= an, ro,'tivit=/ oreover re,'e, in.rastr'tre 'o-le$it= allo4s etter 'ontrol o. ( assets i-roves se'rit= an, re,'es 'o-lian'e ris)s/ Stan,ar,iation hinges on in'reasing 'onsisten'= an, re,'ing 'o-le$it= 4ithin an oerating environ-ent/ (he i,eal S%E i-le-ents a ,e.ine, set o. 'o-onents inter.a'es an, ro'esses to e se, throghot the entire ( in.rastr'tre/ hile it -a= see- 'onter intitive stan,ar,iation ,oes not i-l= that all s=ste-s 4ill e e$a'tl= the sa-eV it si-l= -eans that all s=ste-s 4ill have a ,e.ine, )no4n .on,ation on 4hi'h a set o. ali'ations virtal -a'hines an, tools 'an e ilt/ (here.ore stan,ar,iation .o'ses on three -ain areas: si-li.i'ation o. the ( in.rastr'tre

www%red#at%com

6


ato-ation an, strea-lining o. -anage-ent an, a,-inistration tas)s/

Simplified consistent infrastructure Re,'ing the n-er o. variations in 'ore te'hnologies s'h as oerating s=ste-s a,-inistration tools an, se'rit= an, 'o-lian'e reGire-ents 'reates an environ-ent that is easier to -anage/

Streamlined Operation hen a li-ite, n-er o. oerating s=steversions are ,elo=e, in an ( in.rastr'tre it is ossile to ,e.ine a single stan,ar, set o. oerating ro'e,res an, ro'esses/ (his aroa'h si-li.ies an, strea-lines oeration/

"utomation n'rease, 'onsisten'= an, re,'e, 'o-le$it= e..e'tivel= enale environ-ent ato-ation/ ith onl= a .e4 variations in the 'ore s=ste- .eatres -an= reetitive nonstrategi' tas)s 'an e ato-ate,/ oving =or ( environ-ent to a si-li.ie, 'onsistent ar'hite'tre oens the ,oor to -an= ene.its/

Reduced Downtime #e4er %S variations ,e'rease the statisti'al li)elihoo, o. oerational an, se'rit= isses that 'ase ,o4nti-e/ &etter -anage-ent ra'ti'es reslting .ro- in'rease, in.rastr'tre 'onsisten'= 'at'h isses e.ore the= ring ,o4n s=ste-s an, ali'ations/ Si-li.ie, at'h -anage-ent ensres that s=ste-s are )et to,ate an, online/

2ower Operational 4osts As laor 'osts 'ontrite signi.i'antl= to overall ( 'osts i-roving sta.. e..i'ien'= an, ro,'tivit= 'an lea, to 'o-elling savings an, lo4er total 'ost o. o4nershi @(C%B/ ore E..i'ient ( Sta..: Strea-line, oerations an, ro'esses allo4 a s-aller sta.. to a,-inister a larger n-er o. h=si'al an, virtal s=ste-s -ore easil= an, e..i'ientl=/ E$tre-el= .avorale a,-inistratortos=ste- an, ser ratios are ossile 4ith S%Es/

/ncreased Productivit&e'ase ea'h a,-inistrator 'an -anage a larger n-er o. servers an, sers the


9

www%red#at%com

in.rastr'tre 'an gro4 an, s'ale 4ithot ringing on a,,itional sta../ &e'ase ,ee e$ertise in -ltile oerating s=ste-s an, )ernel ,evelo-ent is not reGire, ( sta.. 'an a..or, to .o's on 'ore siness ali'ations/ Ato-ation also retrns valale ti-e to strategi' tas)s that -ove the siness .or4ar,/

Reduced Help Desk @orkloads ith -ore 'onsistent servi'es .e4er hel ,es) ti')ets are .ile, re,'ing the a-ont o. ti-e ( sen,s on hel ,es) 4or)loa,s an, in'reasing ser ro,'tivit= an, ti-e/ #aster ( Resonse (i-es: ith ato-ation ne4 ali'ations 'an e ,elo=e, to a large n-er o. s=ste-s in a .ra'tion o. the ti-e nee,e, .or -anal ,elo=-ent/ Servers an, virtal -a'hines 'an e rovisione, in a -atter o. hors an, -intes instea, o. ,a=s an, hors/

/ncreased /nfrastructure Securit- and 4ontrol Re,'e, in.rastr'tre 'o-le$it= allo4s etter 'ontrol o. ( assets i-roves se'rit= an, re,'es 'o-lian'e ris)s/

7reater Business "lignment and "gilit%n the siness level enhan'e, in.rastr'tre agilit= .a'ilitates in'rease, 'o-etitiveness an, align-ent 4ith goals 4hile re,'e, oerational 'osts ene.it the otto- line/ Re, at Enterrise *in$ 4ith Re, at Satellite rovi,es an i,eal lat.or- .or stan,ar,iation/ (hese t4o )e= 'o-onentsWthe oerating s=ste- Re, at Enterrise *in$ an, the s=ste-s -anage-ent lat.or- Re, at SatelliteW4or) together to .rther enhan'e the ene.its o. stan,ar,ie, oerating environ-ents/

Red Hat Sate""ite  'er'ie% Re, at Satellite is a s=ste- -anage-ent soltion that -a)es Re, at in.rastr'tre easier to ,elo= s'ale an, -anage a'ross h=si'al virtal an, 'lo, environ-ents/ Satellite hels sers rovision 'on.igre an, ,ate s=ste-s to ensre the= rn e..i'ientl= se'rel= an, in 'o-lian'e 4ith varios stan,ar,s/ &= ato-ating -ost tas)s relate, to -aintaining s=ste-s Satellite hels organiations in'rease e..i'ien'= re,'e oerational 'osts an, enale ( to etter reson, to strategi' siness nee,s/ Re, at Satellite ato-ates -an= tas)s relate, to s=ste- -anage-ent an, easil= integrates into e$isting 4or).lo4 .ra-e4or)s/ (he 'entralie, 'onsole rovi,es a,-inistrators one la'e

www%red#at%com

=


.or a''essing reorts an, .or rovisioning 'on.igring an, ,ating s=ste-s/

Provisioning Provision on are -etal virtalie, in.rastr'tre an, on li' or rivate 'lo,sWall .roone 'entralie, 'onsole an, 4ith one si-le ro'ess/  i')l= rovision an, ,ate =or entire are-etal in.rastr'tre/  Easil= 'reate an, -anage instan'es a'ross virtalie, in.rastr'tre or rivate an, li' 'lo,s/  Create 'o-le$ Li')start an, P8E s'enarios 4ith o4er.l variales an, sniets/  Dis'over an, sear'h a'ross nonrovisione, hosts .or rai, ,elo=-ent/

4onfiguration management Anal=e an, ato-ati'all= 'orre't 'on.igration ,ri.t an, 'ontrol an, en.or'e the ,esire, host en,state all .ro- the Re, at Satellite ser inter.a'e @UB/ (his lets =o 'on.igre Re, at Enterrise *in$ s=ste-s -ore e..i'ientl= .or -ore agilit=/  ntegrate s=n'hroniing Pet -o,les/ (his integration rovi,es the ailit= to -anage ro-ote an, ,istrite 'on.igration easil= a'ross =or environ-ent/  Ato-ati'all= 'orre't s=ste- state 4ith 'o-lete reorting a,iting an, histor= o. 'hanges/

Software management Re, at Satellite hels ensre a s=ste-ati' ro'ess is se, to al= 'ontent @in'l,ing at'hesB to ,elo=e, s=ste-sW 4hether the= are ,elo=e, on h=si'al virtal or 'lo, in.rastr'treWin all stages .ro- ,ev to ro,'tion/ (his ensres etter 'onsisten'= an, availailit= o. s=ste-s .reeing ( to Gi')l= reson, to siness nee,s an, vlnerailities/  Content vie4s are 'olle'tions o. RPs 'ontainer 'ontent or Pet -o,les re.ine, 4ith .ilters an, rles/ Content vie4s are lishe, an, ro-ote, throghot li.e'='le environ-ents enaling en,toen, s=ste- -anage-ent/ hile Satellite 5 se, 'hannels an, 'loning 'ontent vie4s in Satellite 6 'ontain oth so.t4are an, 'on.igration 'ontent in one la'e greatl= si-li.=ing -anaging the li.e'='les o. s=ste-s/  ntegrate, 4ith the Re, at Content Deliver= Net4or) @CDNB to let sers 'ontrol s=n'hroniation o. Re, at 'ontent straight .ro- the ser inter.a'e/  Distrition an, .e,eration o. rovisioning 'on.igration an, 'ontent ,eliver= via Re,


&

www%red#at%com

at Satellite Casle Server/

Su*scription management Easil= reort an, -a =or Re, at ro,'ts to registere, s=ste-s .or en,toen, ss'rition 'ons-tion visiilit=/  Easil= i-ort an, -anage the ,istrition o. =or Re, at so.t4are ss'ritions/  Reort an, -a =or r'hase, ro,'ts to registere, s=ste-s 4ithin Re, at Satellite .or en,toen, ss'rition sage visiilit=/

Red Hat Sate""ite  System Architecture Re, at Satellite 6 is ase, on several oen sor'e ro?e'ts arrange, in the .ollo4ing ar'hite'tre/

www%red#at%com

10


reorting a,iting an, troleshooting/

!atello Latello is a ss'rition an, reositor= -anage-ent ali'ation/ t rovi,es a -eans to ss'rie to Re, at reositories an, ,o4nloa, 'ontent/ Io 'an 'reate an, -anage ,i..erent versions o. this 'ontent an, al= the- to se'i.i' s=ste-s 4ithin ser,e.ine, stages o. the ali'ation li.e'='le/

4andlepin Can,lein is a servi'e 4ithin Latello that han,les ss'rition -anage-ent/

Pulp Pl is a servi'e 4ithin Latello that han,les reositor= an, 'ontent -anage-ent/

Hammer a--er is a C* tool that rovi,es 'o--an, line an, shell eGivalents o. -ost e U .n'tions/

RES3 "P/ Re, at Satellite 6 in'l,es a RES(.l AP servi'e that allo4s s=ste- a,-inistrators an, ,eveloers to 4rite 'sto- s'rits an, thir,art= ali'ations that inter.a'e 4ith Re, at Satellite/

4apsule Re, at Satellite Casle Server a'ts as a ro$= .or so-e o. the -ain Satellite .n'tions in'l,ing reositor= storage DNS DCP an, Pet aster 'on.igration/ Ea'h Satellite Server also 'ontains integrate, Casle Server servi'es/ #rther ,o'-entation 'ol, e .on, here: htts: a''ess /re,hat /'o- ro,'tsre, hat  satellite overvie4

ACME Intro eOre sing a 'o-an= 'alle, ACE as an e$a-le/ ACE is sose, to reresent a t=i'al 'sto-er environ-ent/ refarc#)feed*ack+red#at%com

11

www%red#at%com

Aote, All s'enarios an, eole are .i'tional an, an= rese-lan'e to an= erson living or ,ea, is rel= 'oin'i,ental/ ACE has ?st een .on,e, an, the siness -o,el is not .inall= ,e.ine, =et/ (he 'rrent .o's is to estalish an e'o--er'e lat.or- .or varios 'ons-er goo,s/ (he 4e sho s=ste- is 'rrentl= in the ,esign hase an, is not 'overe, in this soltion gi,e/ nstea, 4e .o's on setting  the reGire, in.rastr'tres an, the s=ste-s an, ali'ation -anage-ent 'aailities/

ACME IT Organization Overview &e'ase ACE is ran, ne4 the ( %rganiation is still Gite s-all/ Nevertheless ACE has ,e'i,e, to se a tra,itional aroa'h to segregating tas)s 4hile str'tring its ( ,eart-ents/ Althogh ACE has a,,itional ,eart-ents s'h as -an Resor'es *egal an, #inan'e 4e are .o'sing ri-aril= on the .ollo4ing three -ain ,eart-ents an, their tea-s:  ( %erations  So.t4are Develo-ent  ( Servi'es anage-ent (he /3 Operations ,eart-ent is ta)ing 'are o. all ,ata'enter -anage-ent tas)s an, o4ns the entire production environment/ (he= il, an, oversee all infrastructure la-ers in'l,ing 'o-ting @oth h=si'al an, virtalB storage an, net4or) resor'es/ (hese resonsiilities in'l,e -onitoring in'i,ent -anage-ent an, a')  restore as 4ell/ n a,,ition the= are resonsile .or all operating)s-stem relate, ite-s in'l,ing %S gra,es an, se'rit= at'hing/ (he Software Development Department creates custom software an, integrates it 4ith !r,art= so.t4are 'o-onents/ (heir resonsiilities in'l,e all ali'ationse'i.i' *uilding and testing activities an, configuration management/

/3 Services .anagement is resonsile .or all arc#itecture and process areas in (/ (hese in'l,e Servi'e ;ali,ation an, (esting @AB Release anage-ent an, Se'rit= anage-ent as the )e= ro'esses/ (his ,eart-ent also a'ts as a *ridge et4een &siness an, ( an, et4een ( %erations an, So.t4are Develo-ent/ (o e etter reare, .or the .tre it re'entl= .on,e, an Emerging 3ec#nologies E3C Department to investigate 'o-ing tren,s an, te'hnologies earl=/

www%red#at%com

1'


(he .ollo4ing organiation 'hart illstrates 'rrent ACE ( %rganiation str'tre:

n Step = Ma =or ( %rganiation an, Roles 4e 4ill i') so-e t=i'al roles an, e$lain ho4 the= 'ol, e -ae, an, 'on.igre, in Re, at Satellite 6/ %nl= a .e4 ,eart-ents an, 'orreson,ing roles are 'overe, insi,e this soltion gi,e t 4e 4ill e$ten, this 'overage ste = ste in 'o-ing ,o'-ents/

ACME Datacenter Topology Overview ACE is ase, in ni'h er-an=/ (he ri-ar= ,ata'enter is in ni'h as 4ell/ (his ,ata'enter has a segregate, net4or) that is se, .or .ronten, servers 4hi'h are availale to the orl, i,e e/ ost o. the in.rastr'tre servi'es are rnning in ni'h 4here the entire ( oerations organiation is ase, as 4ell/ %nl= the 4e ali'ation ,evelo-ent an, testing are ase, in &oston A in the Unite, States/ &oth lo'ations rn s-all ,ata'enters/ ni'h ses Re, at Enterrise ;irtaliation as the n,erl=ing virtaliation lat.or-V in 'ontrast &oston ses the Re, at Enterrise *in$ %enSta') Plat.or-/ (he .ollo4ing ,iagra- illstrates the ,ata'enter toolog= 4hi'h is ,es'rie, in .rther ,etail in Step ':


15

www%red#at%com

ACME Application Architecture Overview Sin'e or ACE 'o-an= has ?st een .on,e, an, the siness -o,el is still evolving 4e 'rrentl= have onl= one siness ali'ation: "4.E @e*site 4hi'h is the li' 4e resen'e o. ACE/ A se'on, siness ali'ation is 'rrentl= in the ,esign hase: the ACE esho/ (he ACE 4esite is ase, on the .a-os or,Press ali'ation t the ACE esho 4ill e'o-e a TEE a rnning on to o. T&oss Enterrise Ali'ation Server/ &oth are sing ariaD& as ,ataase a')en,/ (o a'hieve a higher ,egree o. stan,ar,iation ACE has ,e'i,e, to se a stan,ar,ie, ariaD& 'on.igration as share, 'o-onent/ &esi,es these siness ali'ations there are a lot o. in.rastr'tre servi'es reGire, an, ,o'-ente, in this soltion gi,e/ Pri-aril= the .ollo4ing in.rastr'tre servi'es are ins'oe .or this ,o'-ent an, are @at least artiall=B ,o'-ente, as 4ell:  the server t=e git server 4hi'h hosts a share, revision 'ontrol s=ste- @e/g/ .or 'entrall= -anage, Pet 'on.igrationsB  the ,e,i'ate, M Docker  computing resources 4hi'h a't as 'ontainer hosts  the server t=e log #ost 4hi'h a'ts as a 'entral re-ote log server  the server t=e Satellite 6 4apsule as se, in or ,i..erent lo'ations  @a standard server @lain %SB that is ?st rovi,ing a 'ore il,B (he .ollo4ing ,iagra- illstrates the sa-le ali'ation ar'hite'tre se, in this soltion gi,e:

www%red#at%com

18


e are also sing so-e ree$isting s=ste-s:  Re, at Enterrise ;irtaliation as the n,erl=ing virtaliation lat.or Re, at Enterrise *in$ %enSta') Plat.or- as the virtaliation lat.or- se, in the se'on, lo'ation @&oston USB  a Jai$ -onitoring server

aming Con'entions 'er'ie% (his soltion gi,e ses a naming convention for nearl- all our Satellite entities / (hese na-ing 'onventions -a)e ossile a lot o. the ato-ation e$laine, in varios 'haters o. this soltion gi,e/ e 'an se attern -at'hing an, reglar e$ressions to .ilter an, ,ivi,e Satellite entities ato-ati'all= into ,i..erent e$e'tion ran'hes ase, on 'on,itions/ Ea'h ti-e 4e se an ite- that .ollo4s or na-ing 'onvention 4e re.eren'e the na-ing 'onvention s--ar= 'hater in "ppendi? ///, Aaming 4onvention at the en, o. this ,o'-ent/ (he .ollo4ing rles al= .or all na-ing 'onventions 4ith onl= a ver= .e4 e$'etions:  All entities ase, on or na-ing 'onvention are 4ritten in lowercase letters / (he e$'etion -ight e ro,'ts an, their reositories i. 4e 4ant to se estalishe, an, n'hangeale ven,or na-e notations/  e se a das# et4een the ,i..erent seg-ents o. ea'h na-e attern/  (o searate t4o ite-s 4ithin a seg-ent 4e se underscores/  ost o. the attern-at'hing starts .ro- the le.t so 4e 'an have optional seg-ents at the end or right si,e o. ea'h attern/ (hese seg-ents are se, .or otional version or release tags in so-e e$a-les/ %r na-ing 'onventions are -ost 'riti'al .or:  'ontent vie4s  host gros  A'tivation Le=s (he hge an, sall= in'reasing n-er o. these entities -a)es stan,ar, na-ing 'onventions ese'iall= i-ortant/


1(

www%red#at%com

Step 1: Set up your System Management Infrastructure #irst 4e nee, to set  the asi' 'o-onents reGire, to egin or set/ n -ost 'sto-er environ-ents so-e o. these 'o-onents alrea,= e$ist/

Insta""ing Red Hat Sate""ite *+ (o install an, 'on.igre Re, at Satellite .ollo4 the instr'tions in 'hater 2 o. the Re, at Satellite 6 nstallation i,e: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l nstallation i, e'haRe,at Satellite nstallation i,enstalling Re, at SatelliteServer /ht-l (he nstallation i,e lists the har,4are an, so.t4are reGire-ents re'o--en,e, .or rnning Re, at Satellite/

How @e Have Satellite 6 Set >p in Our 2a* n or la set 4eOre sing these 'o-onents:  Satellite 6 on to o. Re, at Enterrise *in$ 7 as a ;irtal a'hine rnning on to o. Re, at Enterrise ;irtaliation  8#S as a .ile s=ste- @ese'iall= .or lB e'ase o. an ato-ati'all= in'reasing n-er o. ino,es/ e -a,e these ,e'isions ase, on the )e= re'o--en,ations in the Performance 3uning 7uide for Satellite 6 and 4apsules 4hi'h =o 'an .in, here: htts: a''ess /re,hat /'o-arti'les1!"09! (his tale s--aries the s=ste- 'hara'teristi's/ /tem

Specification

Satellite Server Release

6/1 Pli' &eta

%erating S=ste-s Release

Re, at Enterrise *in$ 7/1 $"66

Un,erl=ing ;irt Plat.or- Release

Re, at Enterrise *in$ ;irtaliation !/

www%red#at%com

16


e-or=

16!" &

CPU

 vCPU

Dis) Sie

200 &

Sate""ite  Insta""ation (he ass-tion -a,e is that a Re, at Satellite Server 6 is alrea,= installe,/

Aote, . Re, at Satellite Server 6 is not installe, =et ?st .ollo4 the instr'tions insi,e the etting Starte, i,e 4hi'h 'ol, e .on, here: htts: a''ess /re,hat /'o- ro,'tsre, hat satelliteget starte, Aote, #or net4or) 'o--ni'ation et4een Satellite Casle an, osts see: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l nstallation i, ese't Re,at Satellitenstallationi,ePrereGisites/ht-l .or-Re,at Satellitenstal lation i,e PrereGisites ReGire, Net4or) Ports an, htts: a''ess /re,hat /'o-arti'les 175!!

DNS, DHCP, and TFTP Recommendations (his soltion gi,e ses the iltin DAS DH4P an, 3<3P .eatres 4hi'h 'an e 'on.igre, on an= Re, at Satellite Casle @Satellite Server 6 has an e-e,,e, CasleB/ . =o have not 'on.igre, the DAS DH4P an, 3<3P 'aailities o. Satellite Server 6/1 4e re'o--en, that =o ,o/ Satellite Server is installe, an, 'on.igre, throgh Puppet / &e'ase o. this 'on.igration the katello-installer 'an e sa.el= e$e'te, again/  )atelloinstaller X 'aslet.t tre X 'asle,h' tre X 'asle,h'gate4a= 7"3E@" /P X 'asle,h'inter.a'e /nterface to listen on X 'asle,h'na-eservers DAS1DAS' X 'asle,h'range S3"R3 EAD X 'asle,ns tre X


19

www%red#at%com

'asle,ns.or4ar,ers DAS1FDAS' X 'asle,nsinter.a'e /nterface to listen on X 'asle,nsreverse ?%?%?%in)addr%arpa X 'asle,nsserver "ddress of DAS server to manage default, G1'9%0%0%1GC X 'asle,nsone  DAS one name default, Ge?ample%comGC

Aote, Rela'e %%% 4ith vali, vales re.le'ting =or arti'lar environ-ent/ E?ample, @n this e$a-le the P a,,ress o. the Satellite Server 6 is: 192/16"/0/50B  )atelloinstaller X 'aslet.t tre X 'asle,h' tre X 'asle,h'gate4a= 3192/16"/0/253 X 'asle,h'inter.a'e 3eth03 X 'asle,h'na-eservers 3192/16"/0/503 X 'asle,h'range 3192/16"/0/100 192/16"/0/2003 X 'asle,ns tre X 'asle,ns.or4ar,ers 310/10/10/10V192/16"/0/103 X 'asle,nsinter.a'e 3eth03 X 'asle,nsreverse 0/16"/192/ina,,r/ara X 'asle,nsserver 3127/0/0/13 X 'asle,nsone 3e$a-le/'o-3

4aution, &e.ore =o a'tivate the ,h' ,ae-on on =or net4or) -a)e sre it ,oes not 'on.li't 4ith an= other ,h' ,ae-ons on the sa-e net4or)/ . there is no ,h' server @allo4e,B in =or net4or) =o 'an se Satellite 6 to 'reate oot isos @see 'hater Provisioning .et#ods insi,e Step 9B/ t is also ossile to leverage an alrea,= e$isting P8E in.rastr'tre @t 4e ,o not 'over that ro'e,re in ,etail in this ,o'-entB/ . =o nee, to se -ltile ,h' server on the sa-e net4or) =o 'an li-it =or ,h' o..ers to the 'lients -anage, = this 'asle/ Use this otion in =or snet ,e.initions: ignore n)no4n'lientsV

Aote,

www%red#at%com

1=


Do not se this otion i. =o nee, to assign i a,,resses ,=na-i'all= .or 'lients that are not alrea,= 'on.igre, on =or ,h' server/

@arning, Sin'e the Mignore n)no4n'lientsV stana in the dhcpd.conf 'on.igration .ile is not art o. the Pet te-late eing se, 4hen rnning the )atelloinstaller ignore unknown-clients; is re-ove, .ro- the dhcpd.conf .ile 4hen the )atelloinstaller is e$e'te, a se'on, ti-e/ E?ample, E$tra't .ro- /etc/dhcp/dhcpd.conf : YZ[ snet 192/16"/0/0 net-as) 255/255/255/0 \ ignore n)no4n'lientsV ool \ range 192/16"/0/100 192/16"/0/200V ] Y///[

Red Hat Content Delivery Network (CDN) (he Content Deliver= Net4or) @CDNB is the -e'hanis- that ,elivers Re, at 'ontent in a geograhi'all= 'olo'ate, .ashion/ #or e$a-le 'ontent s=n'hronie, = a Satellite in Eroe 4ol, ll 'ontent .ro- a sor'e in Eroe/ n -ost enterrise environ-ents server s=ste-s have li-ite, a''ess to the internet/ (he= 'an onl= rea'h the se'i.i' en,oints to 4hi'h the= have a''ess/ Io nee, to a''ess the .ollo4ing ,o-ains via ort ! so that =o 'an s=n'hronie 'ontent .ro- the Re, at CDN to =or Satellite Server: Domain

Port

Protocol

ss'rition/rhn/re,hat/'o-

!

htts

',n/re,hat/'o-

!

htts

^/a)a-aie,ge/net

!

htts


1&

www%red#at%com

Aote, e re'o--en, that =o ,o not se'i.= the P a,,resses e'ase the a')ages are ,istrite, throgh the A)a-ai net4or) an, the P a,,resses 'an 'hange/ o4ever i. =or .ire4all 'annot se hostna-e .iltering Re, at rovi,es a ool o. P a,,resses .or CDN ,eliver=/ #or .rther ,etails see here: htts: a''ess /re,hat /'o-,o'-entationen USRe, at  Ss'rition anage-ent 1 ht-l  RS lo'ationa4are/ht-l . Satellite Server 6 has to se a Pro$= Server to rea'h the Re, at CDN rern the katello-installer 4ith the .ollo4ing otions: )atelloinstaller X )atelloro$=ass4or, _Pro$= ass4or, .or athenti'ation @,e.alt: nilB` X )atelloro$=ort _Port the ro$= is rnning on @,e.alt: nilB3 X )atelloro$=rl _UR* o. the ro$= server @,e.alt: nilB3 X )atelloro$=serna-e _Pro$= serna-e .or athenti'ation @,e.alt: nilB3

Aote, #or -ore 'on.igration otions see: )atelloinstaller hel

or htts: a''ess /re,hat /'o-,o'-entation en USRe, at Satellite6/1 ht-l single nst allation i,ein,e$/ht-l se't Re,at Satellitenstallation i,enstalling Re, at SatelliteServerRnningthenstallationan,Con.igrationProgra-%therCon. igration%tions

Hammer Command #ine Inter!ace a--er is the Co--an, *ine nter.a'e @C*B .or -anaging the Re, at Satellite Server 6 .ro- the shell/ a--er 'an e installe, on an= Re, at Enterrise *in$ Server to 'onne't to the Re, at Satellite Server 6 re-otel= via ter-inal/ a--er is installe, on the Re, at Satellite Server 6 ,ring installation = ,e.alt/ a--er has an intera'tive shell that ses the ash'o-letion .eatre .or 'onvenient

www%red#at%com

'0


intera'tive sage as 4ell as the histor= .n'tion/ Re, at Satellite also rovi,es a Representational State 3ransfer @RES3B AP/ (he AP gives so.t4are ,eveloers an, s=ste- a,-inistrators 'ontrol o. their Re, at Satellite environ-ent otsi,e o. the stan,ar, 4e inter.a'e/ (he RES( AP is se.l .or ,eveloers an, a,-inistrators 4ho 4ant to integrate Re, at Satellite 4ith 'sto- s'rits or e$ternal ali'ations that a''ess the AP via the stan,ar, =erte$t (rans.er Proto'ol @((PB/ #or -ore in.or-ation see: htts: a''ess /re,hat /'o-,o'-entation en USRe, at Satellite6/0 ht-l AP i, ein,e$ /ht-l

Aote, (his soltion gi,e in'l,es instr'tions .or sing the a--er Co--an, *ine nter.a'e .or ea'h ste/

Install and Configure Hammer on a Remote Host (he hammer 'o--an, line inter.a'e is installe, on the Satellite 6 server = ,e.alt t 'ol, e installe, on an= other host as 4ell/ (he reGire, RP a')age rubygem-hammer_cli an, its ,een,en'ies are art o. the Satellite 6 (ools reositor= 4hi'h 4ill e in'l,e, in or Core &il, ,e.inition in Step ( an, there.ore availale to all hosts -anage, = Satellite 6/ Io nee, to rn the .ollo4ing 'o--an, on an= host =o 4ant to se to -anage Satellite 6 re-otel= sing hammer C*:  =- install r=ge-ha--er'li

&= ,e.alt ha--er reGires athenti'ation sing =or Satellite 6 login 're,entials:  ha--er  user  password hel

n or,er to er-anentl= store serna-e an, ass4or, a 'on.igration .ile cli_config.yml 'an e 'reate, an, -a,e availale either s=ste- 4i,e or .or an in,ivi,al ser/ a--er C* is = ,e.alt loo)ing .or its 'on.igration in the .ollo4ing ,ire'tories loa,e, in this or,er: •

•

•

•

RbConfigCO!"#$%&sysconfdir&'/hammer/ @(he a'tal vale ,een,s on =or

oeratings=ste- an, r= ,e.alts/B /etc/hammer/ (/.hammer/ ./config/ @'on.ig ,ir in CDB


'1

www%red#at%com

•

'sto- lo'ation @.ile or ,ire'tor=B se'i.ie, on 'o--an, line -c CO!"_"#)*_P+,

(he .ollo4ing e$a-le has een 'reate, .or the lo'al s=ste- ser rpmbuild sing the Satellite 6 ser admin via ha--er C*:  'at ho-er-il,/ha--er'li'on.ig/=-l :.ore-an:  Enale,isale .ore-an 'o--an,s :enale-o,le: tre  Ior .ore-an server a,,ress :host: Hhtts:satellite6/e$a-le/'o-H :serna-e: Ha,-inO :ass4or,: bse'retO

Creating a e% Sate""ite  rgani,ation Satellite 6 ses organiations to ,ivi,e hosts into logi'al gros ase, on o4nershi rose 'ontent se'rit= level or other ,ivisions/ Io 'an vie4 'reate an, -anage -ltile organiations = sing either the 4e inter.a'e or the a--er 'o--an, line inter.a'e/ So.t4are an, host entitle-ents 'an e allo'ate, a'ross -an= organiations an, a''ess to those organiations 'ontrolle,/ Ea'h organiation -st e 'reate, an, se, = a single Re, at 'sto-er a''ont t ea'h a''ont 'an -anage -ltile organiations/ Ss'rition -ani.ests 'an onl= e i-orte, into a single organiation/

@arning, Satellite 4ill not loa, a -ani.est that has alrea,= een loa,e, into a ,i..erent organiation/ &= ,e.alt Re, at Satellite 'reates one organiation @'alle, De.alt %rganiationB 4hi'h =o 'an -o,i.= to sit =or o4n installation or ,elete/ n or soltion gi,e set 4e have ,elete, the ,e.alt organiation 'reate, ,ring Satellite 6 installation an, 'reate, a ne4 organiation MACE/ Note that 4e are not sing Satellite 6Os multi)org feature in this soltion gi,e/ (o 'reate a ne4 Satellite 6 organiation: 1/ *ogin as the Satellite a,-in or a ser 4ith the 'orreson,ing role/ 2/ Cli') on MA,-inister ` %rganiations ` Ne4 %rganiation

www%red#at%com

''


!/ Enter a na-e lael an, ,es'rition/ / Cli') S-it/

A.ter 'li')ing the S-it tton =o 'an also:  Sele't e$isting hosts to e'o-e art o. this ne4 organiation @ta MSele't ostsB/  Con.igre a,,itional roerties li)e sers 'asles snets -e,ia an, te-lates/

e are leaving the ,e.alt 'on.igration .or all these ite-s n'hange,/ e 4ill 'on.igre thein later se'tions o. this soltion gi,e/


'5

www%red#at%com

$ia Hammer Io 'an also se a si-le hammer C* 'o--an, to 'reate a ne4 organiation: ha--er organiation 'reate na-e 3ACE3 lael 3ACE3 ,es'rition 3S%E Re.eren'e Ar'hite'tre e$a-le org3

Im&orting your Red Hat Subscri&tion Mani!est Re, at Satellite 6 in'l,es ss'rition -anage-ent 'aailities .or all Satellite-anage, s=ste-s/ n 'ontrast to Satellite 5 ea'h organiation a,-inistrator 'an no4 -aintain all ss'ritions 4ithin the ,esignate, Satellite 6 organiation/ Satellite Server reGires a sor'e .or Re, at 'ontent/ (he 'ontent is 'on.igre, = loa,ing a ss'rition -ani.est .ile to the Satellite/ Io 'an otain this .ile throgh the Re, at Csto-er Portal or = 'onta'ting Re, at Sort/ ani.ests rovi,e ss'ritions to 'lient hosts throgh the Re, at Satellite rather than throgh Re, at Net4or)/ (o otain the ss'rition -ani.est .ro- the Re, at Csto-er Portal: 1/ *og in to the Csto-er Portal/ 2/ Cli') Ss'ritions/ !/ %n the Re, at Ss'rition anage-ent Page s'roll ,o4n an, 'li') Ss'rition anage-ent Ali'ations an, then 'li') Satellite/ / %n the er right 'orner o. the Ss'ritions anage-ent Ali'ations age 'li') Register a Satellite/ 5/ Create a na-e to ,istingish =or Satellite .ro- the other Satellite s=ste-s in =or a''ont/ 6/ Sele't Satellite 6/0 .ro- the ,ro,o4n -en as the Satellite version/ t is i-ortant to sele't the 'orre't version as ea'h version reGires a 'ertain sset o. a')ages/ 7/ Cli') Register/ "/ Cli') Atta'h a ss'rition a,, the ss'ritions reGire, .or Re, at Satellite an, then 'li') Atta'h Sele'te,/

Aote, (he -ini-- reGire-ents .or generating a -ani.est are:  A vali, Re, at Satellite ss'rition on =or Csto-er Portal a''ont  At least one Re, at Enterrise *in$ ss'rition to atta'h to the -ani.est 9/ Cli') Do4nloa, -ani.est to generate an ar'hive in /i .or-at that 'ontains the -ani.est .or Re, at Satellite/

www%red#at%com

'8


No4 =o 'an loa, the ss'rition -ani.est into Re, at Satellite 6/ &e'ase ss'rition -ani.ests are assigne, to an organiation select an organiation *efore loa,ing a ss'rition -ani.est/ 1/ *og in to the Satellite server/ 2/ Cli') An= Conte$t c An= %rganiation an, sele't the organiation to 4hi'h =o 4ant to assign the ss'rition -ani.est/ !/ Cli') Content c Re, at Ss'ritions an, 'li') anage ani.est in the er right 'orner o. the age/ / n the Ss'rition ani.est se'tion 'li') A'tions/ 5/ Un,er the Uloa, Ne4 ani.est sse'tion 'li') &ro4se/ 6/ Sele't the -ani.est .ile to loa, an, 'li') Uloa,/ Uloa, the ss'rition -ani.est sing a--er C* via the .ollo4ing 'o--an,:  ha--er ss'rition loa, organiation 3ACE3 .ile 3t--ani.est/i3

n the soltion gi,e i-le-entation the .ollo4ing ss'rition -ani.est is se,: Su*scriptions

Aum*er

Re, at Enterrise *in$ 4ith S-art ;irtaliation Pre-i- @2so')etB

!0

Re, at Satellite Casle Server

2

Aote, (he Re, at Satellite Server 6 ss'rition itsel. ,oes not have to e a,,e, to the -ani.est/ (he ss'rition -ani.est i-orte, to Satellite 6 in'l,es onl= the ss'ritions .or the ro,'ts -anage, = a arti'lar Satellite 6 organiation as long as Satellite 6 itsel. is not registere, to itsel. 4hi'h 4ol, reGire that the 'orreson,ing Satellite 6 ss'ritions are art o. the ss'rition -ani.est as 4ell/ A.ter s''ess.ll= i-orting the -ani.est veri.= an, -anage =or ss'ritions = 'li')ing on Content ` Re, at Ss'ritions/

Setting -& .our Re'ision Contro" Ser'er (git) (o t 'ontent n,er revision 'ontrol 4e se a ,e,i'ate, git server as a 'entralie, revision 'ontrol s=ste-/ e store the .ollo4ing 'ontent ite-s in or git reositor=:  All Pet sor'es in'l,ing .iles te-lates an, -o,les refarc#)feed*ack+red#at%com

'(

www%red#at%com

 All 'sto- so.t4are in'l,ing se' .iles sor'e r-s an, inar= r-s  All s'rits se, in this soltion gi,e

Aote, (hogh this soltion gi,e ses git other revision 'ontrol s=ste-s 'an e se, as 4ell @.or e$a-le 'vs sversions an, othersB/ . =o ,o not have a revision 'ontrol server in =or environ-ent =et all reGire, 'on.igrations to set  a gitase, RCS server are e$laine, in this ,o'-ent/

Setting -& .our Monitoring Ser'er n or soltion gi,e set 4e se Jai$ as the -onitoring ali'ation/ (he Jai$ server itsel. is alrea,= in la'e so 4e ,o not 'over the installation an, 'on.igration ro'e,re here/ #or a t=i'al sa-le set .ollo4 the installation ,o'-entation: htts: 444/ai$/'o- ,o'-entation !/0 -anal installationinstall .ro- a')ages

www%red#at%com

'6


Step 2: Map your Location and Datacenter Topology n this ste 4e intro,'e ,i..erent ,ata'enter toologies that reGire ,i..erent Satellite 6 'on.igrations/ (his arti'lar net4or) toolog= o. an environ-ent has even -ore i-a't than .e,erate, lo'ations/ Io 'an se Satellite 6 to rovi,e net4or) in.rastr'tre servi'es or =o 'an leverage e$isting ones an, re.le't e$isting ,o-ains an, snets in the 'on.igration settings/ (he .ollo4ing Satellite 6 entities are e$laine, in this ste:  Re, at Satellite 6 Casles d Casle n.rastr'tre Servi'es @DNS DCP (#(PB  Re, at Satellite 6 Co-te Resor'es d Re, at Enterrise ;irtaliation d RE* %enSta') Plat.or Re, at Satellite 6 *o'ations  Re, at Satellite 6 Do-ains  Re, at Satellite 6 Snets (he .ollo4ing ,iagra- illstrates the relationshi et4een the n,erl=ing virtaliation lat.or-s 'on.igre, as 'o-te resor'es snets an, ,o-ains lo'ations an, the asso'iate, Satellite 6 Casles in or set/


'9

www%red#at%com

Red Hat Sate""ite  Ca&su"e Ser'er 'er'ie% (he Re, Satellite Casle Server is a Satellite 'o-onent that rovi,es .e,erate, servi'es to ,is'over rovision an, 'on.igre hosts otsi,e o. the ri-ar= Satellite server/ A Satellite Casle Server rovi,es the .ollo4ing .eatres: Content Deliver= No,e .eatres in'l,ing:  Reositor= s=n'hroniation Reositor= s=n'hroniation allo4s a Re, at Casle to s=n'hronie 'ontent @=- an, PetB .ro- the Satellite Server to e se, .or content deliery /  Content ,eliver= A Re, at Casle lo'ate, on a re-ote site 'an e 'on.igre, as a 'ontent ,eliver= no,e/ (his allo4s hosts 'on.igre, to se this 'asle to .et'h 'ontent .ro- the Casle rather than having to .et'h it .ro- the 'entral Satellite 6 server/ Re, at Satellite Provisioning S-art Pro$= .eatres in'l,ing:  DCP in'l,ing SC DCP servers A Re, at Casle 'an a't as a DCP server or integrate 4ith an e$isting DCP server/ Sin'e DCP reGests are ,one throgh roa,'ast the= are nor-all= not roagate, et4een snets an, .or this reason a DCP server nee,s to e resent on ever= snet @alternativel= a ,h' heler servi'e 'an e se,B/ . no DCP server e$ists on a 'ertain snet an, 'onne'ting the 'entral Re, at Satellite 6 server to this snet is not .easile tting a Re, at Casle on this snet 'an resolve the role-/ 

DNS in'l,ing &in, A Re, at Satellite 6 Casle 'an integrate 4ith a DNS or Real- server/ . the DNS or Real- server are not rea'hale .ro- the Re, at Satellite 6 a Re, at Casle 'an e se, instea,/

 (#(P server

www%red#at%com

'=


A Re, at Casle 'an .n'tion as a (#(P server/ . net4or) restri'tions rohiit the 'lients .ro- sing (#(P to4ar,s the 'entral Satellite the= 'an e 'on.igre, to se, a lo'all= la'e Re, at Casle instea,/ 

Pet aster in'l,ing Pet CA to -anage 'erti.i'ate signing an, 'leaning (he Re, at Casle rovi,es an integrate, Pet aster .or 'on.igration -anage-ent an, a'ts as an E$ternal No,e Classi.ier @ENCB/ A no,e 'he')s in at reglar asis to Ger= the ENC .or its 'on.igration @Pet Class assign-entB/ hen sing the Pet 'on.igration -anage-ent s=ste- ea'h ti-e a 'lient 'he')s in so-e .airl= resor'eintensive tas)s nee, to e ,one on the Pet -aster/ #or s'alailit= reasons 'lients 'an e 'on.igre, to 'he') in 4ith a Re, at Casle rather than 4ith the 'entral Satellite there= lightening the loa, on the -ain Satellite server/

 &aseoar, anage-ent Controller @&CB .or o4er -anage-ent A Re, at Satellite 6 Casle has the ailit= to 'ontrol 'lients &Cs there= o4ering the- on an, o.. .or rovisioning rose/ . net4or) restri'tions revent the -ain Satellite .ro- rea'hing the 'lients &Cs a Re, at Satellite 6 Casle lo'ate, near the &Cs 'an e se, instea,/ (he Satellite Casle Server 'an e se, to solve varios 'hallenges/ hile the ri-ar= rose is to -anage .e,erate, net4or) 'on.igrations -ore e..i'ientl= it 'an e a,,itionall= se, to scale out the Satellite installation/ %rganiations 'an 'reate varios 'asles in ,i..erent geograhi'al lo'ations 4here ,ata'enters are lo'ate,/ (hese are 'entrall= -anage, throgh the Satellite Server/ (his .eatre allo4s hosts in ,istrite, lo'ations to 'o--ni'ate to the 'asle instea, o. ,ire'tl= to the Satellite 6 server itsel./ A,,itionall= it allo4s =o to sele't 4hi'h arti'lar 'ontent sset is -anage, = a se'i.i' 'asle an, there.ore -a,e availale to the hosts ehin, the 'asle/ #or e$a-le a 'asle asso'iate, 4ith a arti'lar li.e'='le environ-ent onl= rovi,es the 'ontent @vie4sB availale in this environ-ents to its hosts/ #rther n.or-ation .or s'aling roses 'an e .on, in the ro,'t ,o'-entation: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l nstallation i, e'haRe,at Satellitenstallation i,enstalling Re,at Satellite CasleServer /ht -l Satellite 6/1 intro,'es a 'ole o. ne4 .eatres aron, isolations o. 'o--ni'ations et4een -anage, hosts an, Satellite 6 server an, 'asles/ An overvie4 o. the Satellite 6


'&

www%red#at%com

'asle 'o--ni'ations an, the differences et4een Satellite 6/0 an, 6/1 'an e .on, here: htts: a''ess /re,hat /'o-arti'les175!!

Sam&"e $atacenter To&o"ogy Scenarios Even i. there are -an= -ore t=es an, ossile 'o-inations 4e 4ill .o's on the .ollo4ing ar'hite'tre t=es @ 4hi'h are revalent in -an= 'sto-er environ-entsB:

Scenario A) Centralized Management - One Red Hat Satellite for All Segments (he ar'hite'tre 4ith the lo4est 'o-le$it= is sing a single Re, at Satellite Server to -anage all seg-ents .or all lo'ations an, the ,ata'enter/ (his reGires a set 4here the Re, at Satellite is installe, in one o. these seg-ents an, the seg-ents 'an e ase, on:  Net4or) Jones @SnetsB  *i.e'='le Environ-ents  Do-ains  Data'enters  Co-te Resor'es Re, at Satellite has ,ire't net4or) a''ess to all other seg-ents/ All -anage, s=ste-s an, en, sers have a''ess to Re, at Satellite

www%red#at%com

50


Aote, e ,o not re'o--en, sing a single Satellite Server to integrate re-ote lo'ations/ Using a Re, at Casle has several a,vantages/ #or e$a-le this ra'ti'e 'an save an,4i,th sin'e hosts 'an otain the reGire, ,ata .ro- a lo'al Re, at Casle an, 'an loa, the ,ata onl= on'e .ro- Re, at Satellite Server to the Re, at Casle instea, o. ever= ti-e a host nee,s ne4 a')ages ,ates or an entire installation/ n a,,ition it 'an e Gite 'hallenging to set  a rovisioning in.rastr'tre that 4or)s 4hen 'onne'ting to re-ote lo'ations/ Io shol, 'onsi,er the .ollo4ing toologies @,es'rie, in S'enarios & C D an, EB .or this t=e o. sitation/

Scenario B) Segregated Network Zones Within a Datacenter (o .l.ill arti'lar se'rit= reGire-ents -ost ,ata'enters are segregate, into ,i..erent net4or) ones/ Re, at Casle 'aailities 'an e se, to -anage hosts an, Co-te


51

www%red#at%com

Resor'es in those segregate, net4or)s to ensre that the= onl= have to a''ess the Re, at Casle Server .or rovisioning 'on.igration errata an, general -anage-ent/ (he Re, at Casle Server is the onl= s=ste- that ,oes nee, ,ire't 'o--ni'ation 4ith the Re, at Satellite Server in this sitation/

Aote, (he DJ Co-te Resor'e 'an e another ,ata'enter -anage, in the sa-e ;irtaliation anager or e a 'o-letel= searate entit=/ A Co-te Resor'e has to e 'reate, .or ea'h ,ata'enter e$isting in oth 'ases @or tenant in 'ase o. RE*%SPB/

Scenario C) Geographically Separate Locations osts in a re-ote lo'ation t=i'all= get their o4n rovisioning an, ,ate in.rastr'tre as a 4a= to lo4er an,4i,th 'ons-tion et4een geograhi'all= searate lo'ations/ Io 'an easil= -anage hosts an, Co-te Resor'es in re-ote lo'ations 4ith a Re, at Casle/

www%red#at%com

5'


Scenario D) Disconnected / Isolated an= sers o. Re, at Satellite ,elo= in ,is'onne'te, or air gae, environ-ents/ n these se're, environ-ents the Satellite is on a net4or) 4here it 'annot rea'h the Re, at Content Deliver= Net4or) @',n/re,hat/'o-B/ As s'h the Satellite is nale to retrieve 'ontent Mover the 4ire/ (he .ollo4ing Lno4le,gease arti'le rovi,es re'o--en,e, ra'ti'es .or a ser 4ho is setting  Re, at Satellite in s'h an environ-ent/ n.or-ation on ho4 to set a ,is'onne'te, Satellite Server 'an e .on, here: htts: a''ess /re,hat /'o-arti'les1!751!!

Aote, (his ,is'onne'te, Satellite s'enario is not 'overe, in this ,o'-ent/

Sam&"e ACME $atacenter Scenario n or ACE s'enario all hosts in the ri-ar= ,ata'enter in ni'h are ,ire'tl= 'onne'te, to the iltin Casle ase, on the Satellite 6 server itsel./ osts rnning insi,e segregate, net4or)s @DJB an, in the se'on,ar= ,ata'enter in &oston are 'onne'te, to ,e,i'ate, Casles/ (he Satellite Server 4ill e la'e, in the lo'ation munich in er-an= the ,- 'asle is in the lo'ation munich-dm0 an, the re-ote 'asle is la'e, in boston/ (he .ollo4ing tale rovi,es an overvie4 o. the Re, at Casle -aing to location refarc#)feed*ack+red#at%com

55

www%red#at%com

Compute Resource domain an, subnet / 3-pe

2ocation

Domain

Su*net

4ompute Resource

Re, at Satellite

-ni'h

e$a-le/'o-

172/2/96/02

RE; @a'-erhev-ni'hB

Re, at Casle

-ni'h,-

,-/e$a-le/'o-

172/2/99/02

RE; @a'-erhev-ni'h,-B

Re, at Casle

oston

novalo'al

10/0/0/02 @-anage, in RE*%SPB

RE*%SP @a'-erhelosostonB

#ocations A *o'ation is 'olle'tion o. ,e.alt settings that reresent a h=si'al la'e/ (hese 'an e neste, so that =o 'an set  an hierar'hi'al 'olle'tion o. lo'ations/

Aote: ost Satellite 6 entities 'an e asso'iate, to -ore than one lo'ation an, one lo'ation 'an e asso'iate, to -ore than one entit= @.or e$a-le 'asles 'o-te resor'es host gros rolesB/ %ne o. the a,vantages o. sing lo'ations is that =o 'an assign 1ubnets 2omains Compute Resources et'/ to revent in'orre't host la'e-ent or 'on.igration/ #or e$a-le =o 'annot assign a snet ,o-ain or 'o-te resor'es to a 'asle t onl= to a lo'ation/ (his restri'tion -eans that 'asles ,o-ains snets an, 'o-te resor'es are assigne, to a arti'lar lo'ation/ (he lo'ation is there.ore the logi'al groing .or all .or o. these o?e'ts/ Io nee, to ensre that these relationshis are vali, @.or e$a-le the snet an, ,o-ain are availale .or this arti'lar 'o-te resor'eB/ Create the location throgh the eU: 1/ +dminister ➤ )ocations ➤ !ew )ocation ➤ a,, lo'ation na-e

www%red#at%com

58

➤ s-it


2/ Cli') on the location to e,it ➤ sele't Organiations on the le.t si,e Organiation to a,, it to the lo'ation

➤

sele't =or

$ia #ammer, %R3ACE3


5(

www%red#at%com

*%CA(%NS3-ni'h -ni'h,- oston3 .or *%C in \*%CA(%NS] ,o ha--er lo'ation 'reate na-e 3\*%C]3 ,one

&e'ase the Satellite Server 'an -anage -ltile organiations 4e also have to se'i.= the %rganiation to 4hi'h the lo'ation shol, elong/ (he .ollo4ing a--er 'o--an, assigns all three lo'ations 'reate, earlier to or ACE organiation: .or *%C in \*%CA(%NS] ,o ha--er lo'ation a,,organiation na-e 3\*%C]3 organiation 3\%R]3 ,one

Red Hat Sate""ite  Com&ute Resources Re, at Satellite 'an rovision an, -anage s=ste-s a'ross are-etal rivate an, li' 'lo,s/ Re, at Satellite Co-te resor'es are har,4are astra'tions .ro- virtaliation an, 'lo, rovi,ers/ Satellite ses 'o-te resor'es to rovision virtal -a'hines an, 'ontainers/ Sorte, rivate rovi,ers in'l,e Re, at Enterrise ;irtaliation o;irt %enSta') ;4are *ivirt an, Do')er/ Sorte, li' 'lo, rovi,ers in'l,e A-aon EC2 oogle Co-te Engine an, Ra')sa'e/ eOve re'entl= lishe, a soltion gi,e ,es'riing the ,elo=-ent o. the Re, at Clo, n.rastr'tre @RCB 'o-onents sing Satellite 6: htts: a''ess /re,hat /'o-arti'les1!"!

www%red#at%com

56


#or this soltion gi,e 4e ass-e that =o alrea,= have an e$isting Re, at Enterrise ;irtaliation an, Re, at Enterrise *in$ %enSta') Plat.or- set/

Configuring Your Virtualization and Cloud Infrastructures as Compute Resources n or,er to rovision s=ste-s on to o. the lat.or-s ,es'rie, here =o have to 'on.igre the- as 'o-te resor'es/ e se, the .ollo4ing in.rastr'tre ar'hite'tre .or this soltion gi,e:

Althogh the e-late, ,ata'enter lo'ation in ni'h er-an= is sing Re, at Enterrise ;irtaliation the se'on, virtal ,ata'enter in &oston US is sing Re, at Enterrise *in$ %ensta') Plat.or- as the n,erl=ing virtaliation lat.or-/ (he installation an, 'on.igration o. these virtaliation lat.or-s is not 'overe, in this ,o'-ent/ (he ene.it o. sing Compute Resource is that the ;irtal a'hine Container is ato-ati'all= 'reate, an, starte, ase, on a Compute Profile or in,ivi,al settings/ Ne4 hosts 'an e -anage, throgh a single inter.a'e 4hi'h saves a,-inistration ti-e/ A,,itionall= the 'onsole o. the ; 'an also e a''esse, throgh the Satellite eU/ (o e ale to 'onne't a Compute Resource to the Satellite Server the .ollo4ing ort@sB have to e oen:


59

www%red#at%com

/nitiator

Endpoint

Endpoint Detail

Port

Protocol

SE2inu? 3-pe

Satellite Server

Co-te Resor'e

RE;anager

!

htts

httsortt

Satellite Server

Co-te Resor'e

RE*%SP

5000

htt

'o--le$-ai nortt

Aote, Crrentl= a ,ire't 'o--ni'ation et4een the Satellite 6 server an, all 'o-te resor'es is reGire, even i. hosts rnning on to o. the 'orreson,ing 'o-te resor'e are sing a Satellite 6 'asle to 'o--ni'ate/ (his in'l,es net4or) 'onne'tions to all a..e'te, a,-in servi'es li)e the Re, at Enterrise *in$ %ensta') servi'e en,oints/ Usall= the= have to e on the sa-e net4or) as the Satellite 6 server itsel./ A ,etaile, list o. all reGire, reGire, net4or) orts 'ol, e .on, here: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l nstallation i, ese't Re,at Satellitenstallationi,ePrereGisites/ht-l tal Re,at Satellitenstall ationi,ePrereGisitesReGire,Net4or) Ports

Location Munich: Configuring RHEV as Compute Resource As state, in the intro,'tion 'hater 4e ass-e that Re, at Enterrise ;irtaliation is alrea,= installe, an, 'on.igre,/ (he set an, 'on.igration o. RE; is ,o'-ente, in ,etail in the earlier re.eren'e ar'hite'tre MDelo=ing Re, at Enterrise ;irtaliation @RE; B .or Servers/ e also have other re.eren'e ar'hite'tres that:  Are relate, to arti'lar se 'ases an, se RE; as the n,erl=ing virtaliation lat.or- li)e s'aling SAP or s'aling *AP sta')s  Sho4 !r, art= integrations o. S=-ante' ;eritas Clster or S=-ante' Net &a')  E$lain varios -igration aths #or a .ll list o. all lishe, re.eren'e ar'hite'tres go to: htts: a''ess /re,hat /'o- sear'h )no4le,gease f GK1Ksort relevant KlangageenKarti'le t=eRe.eren'e F20Ar'hite'tre K,o'-entLin, Soltion Arti'le (o 'on.igre RE; as a 'o-te resor'e o. Re, at Satellite 6 =o nee, the .ollo4ing 're,entials:  UR* o. RE; @.or e$a-le htts: rhev-/a'-e/'o-aiB  *ogin Cre,entials to this RE; environ-ent @serna-e ass4or,B

www%red#at%com

5=


 the RE; ,ata'enter to e se,  Optional : ota D o. this ,ata'enter  8509 'erti.i'ate @ato-ati'all= loa,e,B (o 'reate the RE; Compute Resource .or the internal net4or) throgh the eU: 1/ #nfrastructure ➤ Compute Resources ➤ !ew Compute Resource 2/ Sele't R*3 as the rovi,er ➤ .ill in the 'onne'tion in.or-ation ➤ 1ubmit Io 'an also -a the sele'te, RE; environ-ent to arti'lar lo'ations an, organiations -anage, = Re, at Satellite in the eGivalent tas/

$ia #ammer, NAE3a'-erhev-ni'h3 DESC3RE; n.rastr'tre lo'ate, in -ni'h3 USER3a,-ininternal3 PASS3'hange-e3


5&

www%red#at%com

UR*3htts:rhev-/e$a-le/'o-ai3 PR%;DER3%virt3 %R3ACE3 *%C3-ni'h3 ha--er 'o-teresor'e 'reate X na-e \NAE] X ,es'rition 3\DESC]3 X ser 3\USER]3 X ass4or, 3\PASS]3 X rl 3\UR*]3 X rovi,er 3\PR%;DER]3 X organiations 3\%R]3 X lo'ations 3\*%C]3

Reeat the sa-e stes .or the Compute Resource in the DJ net4or) 4ith the 'orreson,ing in.or-ation/

Aote,  %virt is the strea- version o. Re, at Enterrise ;irtaliation an, is se, as the 'o-te resor'e t=e na-e .or a--er/ Rela'e the variales 4ith the 'orreson,ing vales .or =or environ-ent/  Using Re, at Enterrise ;irtaliation as the n,erl=ing virtaliation lat.or- -ight also a..e't other 'on.igrations ,o'-ente, later in this soltion gi,e/ (hogh all RE;se'i.i' virtaliation ,rivers are alrea,= art o. the )ernel in oth RE*6 an, RE*7 we recommend using t#e optional RHE$ agents% (hese hel =o to get a,,itional in.or-ation an, e$e'te 'ontrol 'o--an,s insi,e the gest/ Sin'e the rhevagent so.t4are a')ages are availale in so.t4are 'hannels that are not t=i'all= assigne, to or RE* s=ste-s 4eOre a,,ing the- to or 'oreil, 'on.igration @see Step (B/  eOre a,ating the artition tale te-lates .or or rovisioning so that the= re.le't the na-ing o. the virtal ,is)s in the gests @see Step 9B/

Location Boston: Configuring RHEL OpenStack Platform as a Compute Resource Aote, Di..eren'es in the 'on.igration o. the Co-te Resor'e are highlighte, in *old te$t/

4onfiguring t#e 4ompute Resource

www%red#at%com

80


(o 'reate the Re, at Enterrise *in$ %enSta') Plat.or- Compute Resource throgh the eU: 1/ #nfrastructure ➤ Compute Resources ➤ !ew Compute Resource 2/ Sele't RHE# &enStack /"at!orm as the rovi,er ➤ .ill in the 'onne'tion in.or-ation ➤ 1ubmit

$ia #ammer, NAE3a'-erhelososton3 DESC3Re, at Enterrise *in$ %enSta') Plat.or- lo'ate, in oston3 USER3a'-ea,-in3 PASS3'hange-e3 UR*3htt:rhelos/os/e$a-le/'o-:5000v2/0to)ens3 PRO$/DERGOpenstackG 3EA"A3Gr;dG %R3ACE3 *%C3oston3


81

www%red#at%com

ha--er 'o-teresor'e 'reate X lo'ations 3\*%C]3 X na-e 3\NAE]3 X organiations 3\%R]3 X rovi,er 3\PR%;DER]3 X rl 3\UR*]3 X ))tenant GIJ3EA"A3KG L ser 3\USER]3 X ass4or, 3\PASS]3

Aote, Io -st a,, multiple Co-te Resor'es 4hen a Co-te Resor'e has several ,ata'enters or tenants @in RE*%SPB/ (o a,, a RE*%SP Co-te Resor'e -ou must add ort 5000 an, v2/0to)ens to the rl/

Configuring VMware vSphere as a Compute Resource Si-ilar to sing other virtaliation lat.or-s alrea,= -entione, sing ;4are vShere as the n,erl=ing virtaliation lat.or- 'an also a..e't other 'on.igrations @s'h as artition tales installation o. a,,itional a')ages @virtaliation ,riversB an, 'on.igration a,atationsB/ Althogh 4e have not se, ;4are virtaliation in or set 4e have a,,e, so-e ;4arese'i.i' enhan'e-ents to or 'oreil, ,e.initions in 'ase =o ,o/

Aote, . =o have Re, at ss'ritions that reGire hosttogest -aing @s'h as ;irtal Data'enter @;DCB nli-ite, est or ;irtaliation SLUS @)no4n as .le$ gestBB =o -st also install virt4ho an a,,itional ti-e/ (his ro'e,re is not 'overe, in this ,o'-ent/ #or -ore in.or-ation on 4h= an, 4hen =o shol, se irt-who see: htts: a''ess /re,hat /'o-arti'les1!002"! an, htts: a''ess/re,hat /'o-arti'les"069!/ www%red#at%com

8'


$omains Io 'an se Satellite to assign ,o-ain na-es 4ith the Re, at Satellite Casle Server DNS/ (his .eatre lets =o gro an, na-e hosts 4ithin a arti'lar ,o-ain/ (o 'reate the ,o-ain e4ample.com in the eU go to: 1/ #nfrastructure ➤ 2omains ➤ !ew 2omain 2/ %n the 2omain ta enter DNS ,o-ain e4ample.com ➤ sele't the Re, at Satellite as DNS Casle !/ o to the )ocations ta ➤ sele't the lo'ation munich / o to the Organiations ta ➤ veri.= that the organiation +C5* is alrea,= assigne, 5/ Cli') on 1ubmit


85

www%red#at%com

*%CA(%N3oston3 ha--er ,o-ain 'reate na-e 3\D%AN]3 ha--er ,o-ain ,ate na-e 3\D%AN]3 organiations 3\%R]3 ha--er ,o-ain ,ate na-e 3\D%AN]3 lo'ations 3\*%CA(%N]3

Subnets Satellite 'an 'reate net4or)s .or gros o. s=ste-s/ Snets se stan,ar, Pa,,ress settings to ,e.ine the net4or) an, se the Re, at Satellite Casle ServerHs DCP .eatres to assign P a,,resses to s=ste-s 4ithin the snet/ (o 'reate the snet 678.89.:.
Aote, . the Re, at Casle han,les the P a,,ress -anage-ent @PAB .or the snet =o 'an 'hoose one o. t4o otions:  DH4P (he DCP servi'e on the asso'iate, Re, at Casle -anages entries .or hosts @-a' a,,ress + i a,,ress an, the ne$tserver to oint to the (#(P serverB/ . =o 'hoose DCP the DCP range 'on.igre, ,ring ca&su"e2insta""er -st -at'h the range se'i.ie, on the eU/  /nternal DB (he Re, at Casle rovi,es i a,,resses ase, on the range rovi,e, in the snet 'on.igrationV no e$ternal servi'e is 'on.igre, @.or e$a-le DCPB/ . the host still shol, e rovisione, via P8E =o -st a,, a re'or, -anall= or via .ore-anhoo)s @see Step 9B to the DCP server se,/ Use this otion 4ith the =oot mode stati'/ $ia #ammer, D%AN3e$a-le/'o-3 %R3ACE3 *%C3-ni'h3 DNSPRARI33 SU&NE(ASL33

www%red#at%com

88


SU&NE(NE(%RL33 SU&NE(PAS(AR(33 SU&NE(PAEND33 CAPSU*ED 1 ha--er snet 'reate na-e 3\D%AN]3 X organiations 3\%R]3 X lo'ations 3\*%C]3 X ,o-ains 3\D%AN]3 X oot-o,e 3Stati'3 X ,nsri-ar= 3\DNSPRARI]3 X -as) 3\SU&NE(ASL]3 X net4or) 3\SU&NE(NE(%RL]3 X gate4a= 3\SU&NE(A(EAI]3 X .ro- 3\SU&NE(PAS(AR(]3 X to 3\SU&NE(PAEND]3 X ia- 3DCP3 X ,h'i, 3\CAPSU*ED]3 X ,nsi, 3\CAPSU*ED]3 X t.ti, 3\CAPSU*ED]3

Aote, Io 'an a'Gire the Re, at Casle D 4ith the 'o--an,: ha--er ott 'sv 'asle list X sear'h 3'asle-ni'h/,-/e$a-le/'o-3 X  gre vi H,H  't ,HH .1

Create the snet to e -anage, = the Re, at Casle capsule-munich.dm.e4ample.com: 1/ #nfrastructure ➤ 1ubnets ➤ !ew 1ubnet 2/ %n the 1ubnet (a ➤ .ill in the 'orreson,ing in.or-ation/ #or PA sele't 2CP an, .or the &oot -o,e static/

$ia #ammer, D%AN3,-/e$a-le/'o-3 %R3ACE3 *%C3-ni'h,-3 DNSPRARI33 SU&NE(ASL33 SU&NE(NE(%RL33


8(

www%red#at%com

SU&NE(PAS(AR(33 SU&NE(PAEND33 ha--er snet 'reate na-e 3\D%AN]3 X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X ,o-ains 3\D%AN]3 X oot-o,e 3Stati'3 X ,nsri-ar= 3\DNSPRARI]3 X -as) 3\SU&NE(ASL]3 X net4or) 3\SU&NE(NE(%RL]3 X gate4a= 3\SU&NE(A(EAI]3 X .ro- 3\SU&NE(PAS(AR(]3 X to 3\SU&NE(PAEND]3 X ia- 3DCP3

!/ %n the se'on, ta 2omains ➤ 'he') the ,o-ain dm.e4ample.com / %n the .orth ta )ocations ➤ a,, the lo'ation dm.e4ample.com to the right si,e 5/ ;eri.= that +C5* is alrea,= a,,e, to the %rganiations ta/ #or RE* %SP =o nee, to 'reate the snet so that the DNS Casle 'an 'reate DNS reverse re'or,s @P(RB as the ,o-ain is onl= resonsile to 'reate the .or4ar, re'or,/ (o 'reate the snet that the Re, at Casle capsule-boston.noalocal 4ill -anage: 1/ #nfrastructure ➤ 1ubnets ➤ !ew 1ubnet 2/ %n the 1ubnet (a ➤ a,, the Na-e Net4or) A,,ress an, Net4or) as) !/ %n the 2omains (a ➤ .lag the 'he')o$ noalocal / S-it

$ia #ammer, D%AN3novalo'al3 %R3ACE3 *%C3-ni'h,-3 SU&NE(NE(%RL SU&NE(ASL ha--er snet 'reate na-e 3\D%AN]3 X -as) 3\SU&NE(ASL]3 X net4or) 3\SU&NE(NE(%RL]3 X organiations 3\%R]3 X

www%red#at%com

86


lo'ations 3\*%CA(%NS]3 X ,o-ains 3\D%AN]3

(he Re, at Casle .eatres .or the snets .or boston an, munich-dm 4ill e a,,e, on'e the Re, at Casle installation is 'o-lete/

Aote, . a Re, at Casle activel- provides net4or) in.rastr'tre servi'es @DNS DCPB it 'an @'rrentl=B -anage onl= one su*net @DCP servi'eB an, one domain @DNS servi'eB/ %ther4ise a Casle 'an e asso'iate, 4ith -ltile snets an,or ,o-ains as long as the net4or) in.rastr'tre servi'es are rovi,e, e$ternall=/

Red Hat Ca&su"e Insta""ation e ass-e that no rovisioning in.rastr'tre is availale in the re-ote lo'ation .or installing Re, at Casles/ e re'o--en, that =o install a lain RE* 7/1+ s=ste- 4ithot an= a,,itional a')ages an, that has at least 200 & o. ,is) sa'e .or the /ar .iles=ste-/ #or ,etaile, Re, at Casle rereGisites see: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l nstallation i, ese't Re,at Satellitenstallationi,eRe,at Satellite CasleServerPrereGisite s/ht-l &e'ase the Re, at Satellite 6 Casle is one o. or sa-le in.rastr'tre servi'es in this ,o'-ent 4e 'over 'ontent vie4s an, host gros se, to -anage Casle 'ontent ,e.initions in a,,itional stes/

Sample Capsule 1: Munich DMZ in the RHEV Datacenter Io nee, to ensre that the .or4ar,an,reverse DNS resoltion 4or)s in oth ,ire'tions:  3o the Re, at Satellite Server from the Re, at Casle 
@arning, . =o ,o not have the DNS resoltion set 'orre'tl= the 'asleinstaller .ails an, ,isla=s the -essage: (he 'asleinstaller is .ailing 4ith error Col, not set HresentH on ensre: Unro'essale Entit= at :srshare)atelloinstaller-o,les.ore-anro$=-ani.estsregister/3 see the


89

www%red#at%com

.ollo4ing )no4le,ge ase arti'le .or -ore in.or-ation: htts: a''ess /re,hat /'o-soltions 12!09! Con.igre the .ire4all 4ith the reGire, Re, at Casle orts: .ire4all'-, er-anent X a,,ort3!t'3 X a,,ort35671t'3 X a,,ort3"0t'3 X a,,ort3"10t'3 X a,,ort39090t'3 X a,,ort3"0"0t'3 .ire4all'-, reloa,

nstall the Re, at Satellite Certi.i'ate on the Re, at Casle Server: SA(E**(E#DN3satellite/e$a-le/'o-3 r- Uvh htt:\SA(E**(E#DN])atello'a'ons-erlatest/noar'h/r-

Register the Re, at Casle to Satellite sing an a'tivation )e=/

E?ample, (his e$a-le ses the ,e,i'ate, a'tivation )e= .or Casles that elong to the li.e'='le environ-ent PR%D 4hi'h 4e 'reate later in Step 9: %R3ACE3 ss'rition-anager register org 3\%R]3 X a'tivation)e=a'tro,in.ra'asle$"66

Aote, (he a'tivation )e= ensres that the .ollo4ing t4o reGire, =- reositories are enale, @an, no other reositoriesB:  rhel7serverr-s  rhelserver7satellite'asle6etar-s (hese reositories are rovi,e, throgh the ''vin.ra'asle Co-osite Content;ie4/ (he Re, at Casle shol, e installe, on a RE* 7/1 or ne4er/ e re'o--en, rnning the .ollo4ing 'o--an, to ensre that all ,ates have een alie,: =- = ,ate

www%red#at%com

8=


nstall the Re, at Casle installer: =- = install 'asleinstaller

&e.ore the Re, at Casle 'an e 'on.igre, =o nee, to create t#e corresponding certificates .or the Casle on the Re, at Satellite Server/ (o 'reate these 'erti.i'ates se the .ollo4ing 'o--an,s to 'onne't to the Re, at Satellite Server 'reate the 'erti.i'ates an, 'o= the- to the Re, at Casle Server CAPSU*E#DN3'asle-ni'h/,-/e$a-le/'o-3 'asle'ertsgenerate 'asle.G,n \CAPSU*E#DN] X 'ertstar \CAPSU*E#DN]'erts/tar s' \CAPSU*E#DN]'erts/tar root\CAPSU*E#DN]:root

Aote, Io must se the ott generate, .ro- the capsule-certs-generate 'o--an, so that the capsule-installer 'an s''ess.ll= register the Re, at Casle on the Re, at Satellite Server/

Red Hat 4apsule 4onfiguration Si-ilar to or -ain Satellite server itsel. the Re, at Casle .or the lo'ation munich-dm serves the DCP (#(P an, DNS servi'es .or rovisioning/ Rn the capsule-installer 'o--an, wit# the ott .ro- the capsule-cert-generate 'o--an, an, wit# these a,,itional otions: 'asleinstaller arent.G,n 3_rela'e`3X registerin.ore-an 3tre3X .ore-anoath)e= 3_rela'e`3X .ore-anoathse'ret 3_rela'e`3X loathse'ret 3_rela'e`3X 'ertstar 3_rela'e`3X et 3tre3X et'a 3tre3X l 3tre3X Gi,roter 3tre3X reversero$= 3tre3X


8&

www%red#at%com

te-lates 3tre3X t.t 3tre3X ,h' 3tre3X ,h'gate4a= 3_rela'e`3X ,h'na-eservers 3_rela'e`3X ,h'range 3_rela'e`3X ,h'inter.a'e 3_rela'e`3X ,ns 3tre3X ,ns.or4ar,ers 3_rela'e`3X ,nsinter.a'e 3_rela'e`3X ,nsone 3_rela'e`3X ,nsreverse 3_rela'e`3

(he .ollo4ing tale otlines 4hi'h s4it'hes to se to ensre that a host has to 'o--ni'ate 4ith the Re, at Casle onl- .or rovisioning: Switc#

l

stores s=n'hronie, 'ontent on the Re, at Casle

Gi,roter

is se, .or 'ontent @=- PetB s=n'hroniation

reversero$=

is se, to ensre that tra..i' .ro- a host ist sent to the satellite via the 'asle

te-lates

store rovisioning te-lates on the 'asle

t.t ,h' ,ns

to enale .ll rovisioning .eatres

Aote, . =o see the .ollo4ing error -essage: 3jetarseH: invali, =te seGen'e in USASC @Arg-entErrorB3 -a)e sre that *AN K *CC(IPE is set to 3enUS/U(#"3: e$ort *ANenUS/U(#" e$ort *CC(IPEenUS/U(#"

A.ter s''ess.ll= rnning the capsule-installer 'o--an, initiate content s-nc#roniation .ro- the Re, at Satellite to the Re, at Casle/ @%n the Re, at SatelliteB *ist all availale 'asles: ha--er 'asle list

www%red#at%com

(0


 D  NAE  UR*  '  'asle-ni'h/,-/e$a-le/'o-  htts:'asle-ni'h/,-/e$a-le/'o-:9090 1  satellite/e$a-le/'o htts:satellite/e$a-le/'o-:9090 

Please note the Casle D -ar)e, 4ith re, 'olor 4hi'h 4e 4ill se .or .rther 'o--an,s elo4/ nitiate the 'ontent s=n'hroniation: ha--er 'asle 'ontent s=n'hronie i, ' Y///////////

[ Y50F[

2ifec-cle Environments (he Satellitee-e,,e, Casle ato-ati'all= inherits all e$isting )ifecycle *nironments/ Re, at Casles 'an e se, to searate )ifecycle *nironments/ n this sa-le 'on.igration all )ifecycle *nironments are availale to the Re, at Casle lo'ate, in the DJ/ (o assign )ifecycle *nironments to a Re, at Casle: 1/ Navigate to #nfrastructure ➤ Capsules ➤ sele't the Re, at Casle capsule-munich.dm.e4ample.com 2/ Cli') on the )ifecycle *nironments ta ➤ a,, all Environ-ents to the right si,e in or,er to s=n'hronie 'ontent elonging to the 'orreson,ing *i.e'='le Environ-ent to the Re, at Casle/


(1

www%red#at%com

Aote, At the ti-e o. this 4riting it 4as not ossile to 'o-lete this ste via ha--er C*/ !/ Cli') on the )ocations ta ➤ a,, the lo'ation munich-dm to the right si,e

$ia Hammer, ha--er lo'ation a,,s-artro$= X s-artro$= 3'asle-ni'h/,-/e$a-le/'o-3 X na-e 3-ni'h,-3

Su*net A,, the Re, at Casle to the Snet dm.e4ample.com: 1/ #ro- #nfrastructure ➤ 1ubnets ➤ sele't the snet dm.e4ample.com 2/ %n the thir, ta Capsules ➤ a,, capsule-munich.dm.e4ample.com as the DCP(#(P an, DNS Casle

$ia Hammer @veri.= the Pro$=D .irstB: Pro$=D@ha--er ott 'sv ro$= list  gre 3'asle-ni'h/,-/e$a-le/'o-3  't ,HH .1B SU&NE(,-/e$a-le/'o*%CA(%N-ni'h,- ha--er snet ,ate na-e 3\SU&NE(]3 X ,nsi, 3\Pro$=D]3 X ,h'i, 3\Pro$=D]3 ia- 3DCP3 X t.ti, M\Pro$=D] X

www%red#at%com

('


lo'ations M\*%CA(%N]

Domain A,, the Re, at Casle capsule-munich.dm.e4ample.com to the ,o-ain dm.e4ample.com/ (his a,,ition allo4s =o to -anage DNS re'or,s ato-ati'all= .or the ,o-ain dm.e4ample.com/ 1/ #ro- #nfrastructure ➤ 2omains ➤ sele't the reviosl= 'reate, ,o-ain dm.e4ample.com 2/ %n the 2omain ta ➤ sele't the Re, at Casle capsule-munich.dm.e4ample.com .rothe 2!1 Capsule ,ro,o4n -en ➤ S-it

$ia Hammer @veri.= Pro$=D .irstB: Pro$=D@ha--er ott 'sv ro$= list  gre 3'asle-ni'h/,-/e$a-le/'o-3  't ,HH .1B D%AN,-/e$a-le/'o- ha--er ,o-ain ,ate ,nsi, M\Pro$=D] na-e 3\D%AN]

2ocations ;eri.= that the Re, at Casle Snet an, Do-ain is a,,e, to the 'orreson,ing lo'ation: 1/ +dminister ➤ )ocations ➤ sele't lo'ation munich-dm ➤ veri.= that the Casle Snet an, Do-ain is a,,e, to the lo'ation (he Re, at Casle capsule-munich.dm.e4ample.com is no4 .ll= 'on.igre, an,


(5

www%red#at%com

oerational .or rovisioining ne4 hosts/

Sample Capsule 2: Boston Remote Location Using RHEL OpenStack Platform #or the RE* %enSta') Plat.or- the Re, at Casle .eatres an, te-lates eing se, are ,i..erent than .or the Re, at Casles -anaging the Re, at Enterrise ;irtaliation Environ-ent/  DCP an, (#(P servi'es are not se,/ (he RE* %enSta') Plat.or- -anages the snets itsel. an, .ollo4s an i-agease, aroa'h .or rovisioning/  (he 2omain @in'l,ing the DNS .eatreB is 'on.igre, so that the hosts 'an rea'h the Re, at Casle capsule-boston.noalocal / (o e ale to rovision a ne4 host ase, on an i-age alrea,= e$isting in RE* %SP =o -st a,, the i-age to the list o. i-ages that the Re, at Satellite Server 'an se/

Aote, Io 'an a'Gire a 'lo,ase, RE* 7/1 i-age 'alle, 3L; est -age3 se, on RE* %enSta') Plat.or- here: htts: a''ess /re,hat /'o-,o4nloa,s'ontent 69 ver rhel 77/1 $"66 ro,'t ,o4nloa,s 1/ #ro- #nfrastructure ➤ Compute Resources ➤ sele't the Co-te Resor'e acme-rhelosp-boston 2/ Navigate to the #mages ta ➤ !ew #mage !/ #ill in the 'orreson,ing in.or-ation .or the ne4 i-age/ a)e sre to sele't the 'he')o$ 3User ,ata3 an, a,, the serna-e 3'lo,ser3/

Aote, (he root ser is ,ea'tivate, = ,e.alt on the L; est -age/ A,, the Userna-e cloud-user .or the ne4 i-age/

www%red#at%com

(8


E?ample,

Aote, At the ti-e o. this 4riting it is not ossile to se ha--er C* to 'reate or ,ate an i-age to .lag the 3User ,ata3 'he')o$/

User Data Use User Data to ass in.or-ation 'ontaine, in a lo'al .ile @the rovisioning te-late .ro- the t=e user dataB to an instan'e at lan'h ti-e/ . =o have 'on.igre, the virtal -a'hine to rn the 'orreson,ing servi'e at oot ti-e it retrieves the ser ,ata in.or-ation .ro- the -eta,ata servi'es an, ta)es a'tion ase, on the ser ,ata 'ontent/ (he 'orre't tool .or this is 'lo,init/ n arti'lar 'lo,init is compati*le 4ith the Co-te -eta,ata servi'e as 4ell as the Co-te 'on.ig ,rive/ (he Re, at Satellite Server also rovi,es a provisioning template .or User Data 'alle, 3Satellite Li')start De.alt User Data3/ A.ter =o have oote, a s=ste- .ro- a te-late the rovisioning te-late 4ill e e$e'te, to .rther 'on.igre the s=ste- @.or e$a-le to register


((

www%red#at%com

the s=ste- at the satellite install an, to 'on.igre the )atelloagent an, Pet agentB/ hen =o se the 3User Data3 te-late the host initiates 'o--ni'ation to the assigne, Re, at Casle/

Aote, (o e ale to login to a s=ste- rovisione, via RE* %SP 4ith the L; est -age =o must add the ara-eter 3ssh)e=3 to the host 4ith the 'orreson,ing li' ssh)e=/

An alternate aroa'h 4ol, e to 'lone the User ,ata te-late an, then 'hange it a''or,ing to =or se'i.i' nee,s/ (o a,, the rovisioning te-late MSatellite Li')start De.alt User Data .or 'lo, ase, rovisioning: 1/ #ro- osts ➤ Proisioning templates ➤ sele't the te-late 1atellite >ickstart 2efault ?ser 2ata 2/ Navigate to the +ssociation ta ➤ assign the Re, at Enterrise *in$ versions to e se, on %enSta') ➤ 1ubmit

www%red#at%com

(6


A.ter a,,ing the %erating S=ste- to the te-late =o -st sele't the te-late on the %erating S=ste- si,e as 4ell: 1/ #ro- osts ➤ Operating 1ystem ➤ sele't ever= RE* %S that nee,s to get assigne, the ser,ata te-late 2/ Navigate to the ,emplates ta ➤ sele't 1atellite >ickstart 2efault ?ser 2ata .or the ser,ata ,ro,o4n list ➤ 1ubmit


(9

www%red#at%com

#l.ill   

the .ollo4ing rereGisites in Re, at Enterrise *in$ %enSta'): nstall a Re, at Enterrise *in$ on ersistent storage Con.igre the .loating P Range that has to e a,,e, to the Re, at Casle server Con.igre the net4or) tenant 4ith the roter to an e$ternal net4or) @otsi,e RE* %SP to rea'h the Re, at SatelliteB  A,, the P a,,ress o. the host that e'o-es the Re, at Casle server as the DNS server in the DCP 'on.igration/  n the DCP 'on.igration a,, the P a,,ress o. the Re, at Casle server as the DNS server/  Con.igre the Se'rit= ro .or in'o-ing an, otgoing tra..i' A,van'e, #ire4all Con.igration: htts: a''ess /re,hat /'o-,o'-entation en USRe, at Satellite6/1 ht-l nstallatio n i,ese't Re,at Satellitenstallationi,ePrereGisites/ht-l i, !2021"

#or ,etaile, list o. Re, at Casle rereGisites see: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l nstallation i, ese't Re,at Satellitenstallationi,eRe, at SatelliteCasleServer PrereGisite s/ht-l As 4ith other sa-le 'asles 'on.igre, earlier =o nee, to ensre that the .or4ar,an,reverse DNS resoltion 4or)s in oth ,ire'tions:  3o the Re, at Satellite Server from the Re, at Casle 
@arning, . =o ,o not have the DNS resoltion set 'orre'tl= the 'asleinstaller .ails an, ,isla=s the -essage: (he 'asleinstaller is .ailing 4ith error Col, not set HresentH on ensre: Unro'essale Entit= at :srshare)atelloinstaller-o,les.ore-anro$=-ani.estsregister/3 see the .ollo4ing )no4le,ge ase arti'le .or -ore in.or-ation: htts: a''ess /re,hat /'o- soltions 12!09! /nstall the Re, at Satellite 'erti.i'ate on the Re, at Casle Server: SA(E**(E#DN3satellite/e$a-le/'o-3 r- Uvh htt:\SA(E**(E#DN])atello'a'ons-erlatest/noar'h/r-

Register the Re, at Casle to Satellite sing an a'tivation )e=/ n this e$a-le 4e are sing a ,e,i'ate, a'tivation )e= .or Casles/ (his )e= elongs to the li.e'='le environ-ent

www%red#at%com

(=


PR%D 4e 'reate in Step 9: %R3ACE3 ss'rition-anager register org 3\%R]3 X a'tivation)e=a'tro,in.ra'asle$"66

/nstall the Re, at Casle shol, on RE* 7/1+ 4ith the ne4est ,ate level: =- = ,ate

/nstall the Re, at Casle installer: =- = install 'asleinstaller

&e.ore =o 'an 'on.igre the Re, at Casle 'an e 'on.igre, =o must 'reate 'erti.i'ates .or the Casle on the Re, at Satellite Server/  4onnect to the Re, at Satellite Server 'reate the 'erti.i'ates an, 'o= the- to the Re, at Casle Server: CAPSU*E#DN3'asleoston/novalo'al3 'asle'ertsgenerate 'asle.G,n \CAPSU*E#DN] X 'ertstar \CAPSU*E#DN]'erts/tar s' \CAPSU*E#DN]'erts/tar root\CAPSU*E#DN]:root

Aote, Io -st se the ott generate, .ro- the capsule-certs-generated 'o--an, .or the capsule-installer to s''ess.ll= register the Re, at Casle on the Re, at Satellite Server/

Red Hat 4apsule 4onfiguration Run the capsule-installer 'o--an, 4ith the ott .ro- the capsule-cert-generate 'o--an, along 4ith the .ollo4ing a,,itional 'o--an,s: 'asleinstaller arent.G,n 3_rela'e`3X registerin.ore-an 3tre3X .ore-anoath)e= 3_rela'e`3X .ore-anoathse'ret 3_rela'e`3X loathse'ret 3_rela'e`3X 'ertstar 3_rela'e`3X


(&

www%red#at%com

et 3tre3X et'a 3tre3X l 3tre3X Gi,roter 3tre3X reversero$= 3tre3X te-lates 3tre3X ,ns 3tre3X ,ns.or4ar,ers 3_rela'e`3X ,nsinter.a'e 3_rela'e`3X ,nsone 3novalo'al3X ,nsreverse 3_rela'e`3

Aote, e se, an i-agease, rovisioning -etho, .or Re, at Enterrise *in$ %enSta') Plat.or-/ (his -etho, ,oes not reGire the ,h' an, t.t .eatres/ /nitiate 'ontent s=n'hroniation .ro- the Re, at Satellite to the Re, at Casle a.ter s''ess.ll= rnning the capsule-installer 'o--an,/ @%n the Re, at SatelliteB 2ist all availale 'asles: ha--er 'asle list  D  NAE  UR*  !  'asleoston/novalo'al  htts:'asleoston/novalo'al:9090 2  'asle-ni'h/,-/e$a-le/'o-  htts:'asle-ni'h/,-/e$a-le/'o-:9090 1  satellite/e$a-le/'o htts:satellite/e$a-le/'o-:9090 

/nitiate the 'ontent s=n'hroniation: ha--er 'asle 'ontent s=n'hronie i, 5 Y///////////

[ Y50F[

www%red#at%com

60


2ifec-cle Environments (he Satellite e-e,,e, Casle ato-ati'all= inherits all e$isting )ifecycle *nironments/ A Re, at Casle 'an e se, to segregate ,i..erent )ifecycle *nironments/ As otline, in the intro,'tion &oston is resonsile .or the ,evelo-ent an, Galit= assran'e o. the 4e lat.or-/ e set  a Re, at Casle .or or se'on,ar= ,ata'enter &oston so that 4e 'ol, segregate resonsiilities ase, on )ifecycle *nironments/ eDev an, eA are the onl= )ifecycle *nironments availale to the Re, at Casle lo'ate, in &oston/ (o assign )ifecycle *nironments to a Re, at Casle: 1/ Navigate to #nfrastructure ➤ Capsules ➤ sele't the Re, at Casle capsule-boston.noalocal 2/ Cli') on the )ifecycle *nironments ta ➤ a,, the @eb-2e an, @eb-A+ environ-ents to the right si,e to s=n'hronie 'ontent that elongs to the 'orreson,ing *i.e'='le Environ-ents in the Re, at Casle

Aote, (his ste 'ol, not e ,one via ha--er at the ti-e o. 4riting/ !/ Cli') the )ocations ta ➤ a,, the lo'ation boston to the right si,e

$ia Hammer, ha--er lo'ation a,,s-artro$= s-artro$= 3'asleoston/novalo'al3 na-e 3oston3


61

www%red#at%com

Su*net "dd the Re, at Casle to the Snet noalocal : 1/ #nfrastructure ➤ 1ubnets ➤ sele't the snet noalocal 2/ %n the thir, ta Capsules ➤ a,, noalocal as DNS Casle "dd the DNS Casle .or P(R re'or, 'reation: Pro$=D 5 SU&NE(novalo'al *%CA(%Noston ha--er snet ,ate na-e 3\SU&NE(]3 X ,nsi, 3\Pro$=D]3 X lo'ations M\*%CA(%N]

Domain "dd the Re, at Casle capsule-boston.noalocal to the ,o-ain noalocal  so that =o 'an ato-ati'all= -anage DNS re'or,s .or the ,o-ain noalocal / 1/ #ro- #nfrastructure ➤ 2omains ➤ sele't the reviosl= 'reate, ,o-ain noalocal 2/ %n the 2omain ta ➤ sele't the Re, at Casle capsule-boston.noalocal .ro- the 2!1 Capsule ,ro,o4n -en ➤ 1ubmit

2ocations $erif- that the Re, at Casle an, Do-ain are a,,e, to the 'orreson,ing lo'ation: 1/ +dminister ➤ *o'ations a,,e, to the lo'ation

➤

sele't lo'ation oston

➤ veri.=

that the Casle an, Do-ain are

(he Re, at Casle capsule-boston.noalocal is no4 .ll= 'on.igre, an, rea,= to rovision ne4 hosts/

www%red#at%com

6'


Step 3: Define Your Definitive Media Library Content. n a 'ontrolle, ( environ-ent it is 'r'ial that onl= athorie, so.t4are an, 'on.igration versions are se, in ro,'tion/ A De.initive e,ia *irar= is a reositor= that stores an, rote'ts the ,e.initive athorie, versions o. so.t4are an, 'on.igrations/ (he 'orreson,ing 'hangean,release -anage-ent ro'ess ensres that these 'on.igrations are teste, an, Galit=assre, e.ore the= are ,elo=e, to ro,'tion/

So!t%are Entry /oints and Formats So.t4are 'o-es along in varios .or-ats/ So-e o. the- ,een, ri-aril= on their asso'iate, li'ense -o,els/ (he .ollo4ing ,iagra- illstrates a sa-le so.t4are.or-at li.e'=le an, highlights so-e stes that are reGire, *efore Satellite 6 'an -anage these in,ivi,al so.t4are t=es:


65

www%red#at%com

. 4e ,ivi,e the so.t4are li.e'='le into the 9 stes visalie, in the gre= 'hevrons 4e 'an ,ivi,e it into the .ollo4ing so.t4areentr= .or-ats:  Re, at so.t4are alrea,= a')age, as r- an, P)e= signe,/ (his -o,el alies to all Re, at ro,'ts in the ,iagra-: Re, at Enterrise ;irtaliation Re, at Enterrise *in$ an, Re, at T&oss Enterrise Ali'ation Plat.or- @thogh all Re, at ro,'ts are oen sor'e an, availale as sor'e 'o,e or sor'e r- a')ages 4e are .o'sing on the inar= r- a')ages hereB/  So.t4are alrea,= a')age, as RP an, P )e= signe, .ro- a !r,art= ven,or  Prorietar= so.t4are 4hi'h is not availale in sor'e'o,e .or-at t onl= as inar= il, artiall= not a')age, as r- an, P)e= signe,  %en sor'e tools availale as sor'e 'o,e @an, sall= as inar= il,s .or 'o--on oerating s=ste-s as 4ellB  Csto- ali'ations sall= availale as sor'e 'o,e So.t4are that is availale as sor'e 'o,e an, inar= .or-at t not a')age, as r- an, P)e= signe, reMuires additional steps 4hen eing ilt @reslting .or-at: inariesB a')age, @reslting .or-at: r-B P)e= signe, @reslting .or-at: P)e=signe, ra')ageB an, teste, e.ore 4e 'an i-ort it into Satellite 6 as art o. or De.initive e,ia *irar=/

Sate""ite Content Ty&es Io 'an se Re, at Satellite to -anage varios 'ontent t=es = sing ,i..erent 'ontent .or-ats an, entr= oints/ Re, at Satellite 'an a't as the De.initive So.t4are *irar= @DS* (* < v2B as art o. the De.initive e,ia *irar= @D* (* < v!B .ollo4ing the (*< ,e.inition/ e re'o--en, that all 'ontent ,elo=e, to s=ste-s -anage, = Re, at Satellite is also store, -aintaine, an, ,elo=e, via Satellite/ Re, at Satellite sorts the .ollo4ing t=es o. 'ontent: 1/ So.t4are a')age, an, signe, as RP in'l,ing oth Re, at an, .oreign so.t4are 2/ So.t4are an, 'on.igrations a')age, as Pet -o,les !/ Do')er 'ontainer i-ages in'l,ing oth Re, at an, .oreign i-ages n a,,ition to these ,elo=-ent 'ontent t=es Re, at Satellite -anages Re, at errata ,ates )i')start trees an, installation i-ages/ n this ,o'-ent 4e se so.t4are rovi,e, = Re, at an, thir,art= ven,ors or

www%red#at%com

68


'o--nities as 4ell as 'sto- so.t4are to ,e-onstrate ho4 these ,i..erent so.t4are t=es shol, e 'on.igre,han,le, ,i..erentl=/

Aote, All nonRe, at an, 'sto- so.t4are se, here is not a art o. Re, at Enterrise *in$ an, ,oes not .all n,er or Pro,'tion Sort S'oe o. Coverage/ (hese reositories an, a')ages are 'onsi,ere, otional an, have not een teste, = or Galit= engineers/ ore -ore in.or-ation aot the sort 'overage o. EPE* see: htt ht ts s: : a''ess a'' ess /re /re,ha ,hatt /'o /' o-so solt ltion ions s1 1075 075! !

Sate""ite /roducts and Re&ositories Re, at Satellite 6 ses Satellite Pro,'ts to asse-le arti'lar reositories that elong to these ro,'ts together/ A ro,'t 'an 'onsist o. -ltile reositories/ n the oosite to 'ontent vie4s e$laine, later 4hi'h are sose, to e ser-o,i.iale ro,'ts are )in, o. a -aster 'o= o. the original reositories/ Pro,'ts are also se, to han,le ss'ritions/ #or Re, at so.t4are s=n'hronie, to Re, at Satellite 6 the 'orreson,ing ro,'ts are ato-ati'all= 'reate,/

Red Hat Sate""ite /roduct and Re&ository Recommendations . =o have 'sto- or thir,art= so.t4are an, Pet 'ontent =o -st -anall= 'reate =or Satellite Pro,'ts/ Sin'e =o 'an se Pro,'ts to n,le varios reositories that -ight e slit o.. later into ,i..erent 'ontent vie4s 4e re'o--en, that =o 'reate as few Products as possi*le% (he minimum reMuired num*er of Products is determined *- t#e 7P7 ke-s se, to sign the RP a')ages insi,e the reositories/ &e'ase =o 'an onl= assign one P to a Pro,'t =o nee, to have at least one Pro,'t .or ea'h P)e= signatre/ Io 'an slit ,i..erent versions an, ar'hite'tres o. S; or 'sto- so.t4are into ,i..erent Pro,'ts t 4e re'o--en, that =o *undle all Products and variants of eac# software wit#in one Product as long as the= se the sa-e P )e= @see aoveB/ (his n,ling is still vali, i. these ,i..erent versions an, variants are -anage, = ,i..erent roles @searation o. resonsiilitiesB an, -ight there.ore e slit into ,i..erent 'ontent vie4s later/ Another determining factor for t#e total num*er of Products are t#e s-nc#roniation s-nc#roniation plans @e$laine, later in this 'haterB/ hen 'reating a Pro,'t =o 'an sele't the aroriate s=n'hroniation lan .or this ro,'t/


6(


hen =o enale Re, at reositor= s=n'hroniation @Content ` Re, at ReositoriesB Satellite 6 ato-ati'all= 'reates the 'orreson,ing Pro,'ts an, in'l,es the sele'te, reositories/ Unli)e 'sto- Pro,'ts =o 'annot -o,i.= these Red Hat Products @.or e$a-le = sing a ,i..erent na-e or s=n'ing t4i'eB/ n 'ontrast to Satellite 5 Satellite 6 ,oes not allo4 =o to 'lone reositories an, Pro,'ts/ Re, at Satellite Pro,'ts are se, .or inherent Satellite 6 su*scription management / &e'ase ss'ritions are -ae, to Pro,'ts instea, o. Reositories =o 'ol, 'reate in,ivi,al Pro,'ts .or all thir,art= so.t4are i. =o 4ant to tra') their sage on an in,ivi,al asis/ #or instan'e i. =o are sing ,i..erent versions o. a thir,art= ro,'t that are ase, on different contracts and license or su*scription fees 4e re'o--en, 'reating in,ivi,al ro,'ts .or ea'h o. the- to etter tra') their li'ense or ss'rition 'ons-tion/

Aote, /ndependent of its license or su*scription t-pe Red Hat and all ot#er Products @thir, art= an, even 'sto- ro,'tsB an, their asso'iate, so.t4are reositories need to *e managed using t#e Satellite 6 su*scription su*scription management / Ea'h o. these Pro,'ts an, reositories nee,s to e e$li'itl= enale, insi,e an a'tivation )e=/ Please see the relate, a'tivation )e= se'tion in Step 9/ &e'ase =o 'annot se the sa-e reositor= insi,e -ltile 'ontent vie4s that are sta')e, together as a 'o-osite 'ontent vie4 so-e s'enarios -a= .or'e =o to 'reate two Products wit# t#e same same repositor- @not share, t a'tall= 'on.igre, an, s=n'hronie, t4i'eB/ #or -ore ,etails see the EPE* e$a-le insi,e the 4ontent $iew Recommendat Recommendations ions 'hater/ . so.t4are reositories share the sa-e P )e= an, s=n' lan =o 'an 'reate a RHE2)maor)version)independen RHE2)maor)version)independentt product 'ontaining reositories .or ,i..erent RE* -a?or releases/ eOve 'reate a single Pro,'t .or Jai$ -onitoring so.t4are 'ontaining oth RE*6 an, RE*7 Jai$ so.t4are reositories/ &e'ase ro,'ts .or Re, at so.t4are are 'reate, ato-ati'all= in the ne$t stes 4e have to 'reate Pro,'ts onl= .or thir,art= so.t4are @,ivi,e, = ea'h ven,orB an, one Pro,'t .or all ACE 'sto- so.t4are/ e also lan to 'reate a single Pro,'t .or all 'sto- ACE 'ontent that 'ontains one -ore -ore so.t4are @=-B an, 'on.igration @PetB reositories/

/roduct and Re&ositories aming Con'entions As state, earlier 4e are sing a na-ing 'onvention in this soltion gi,e that etter sorts ato-ation = enaling .iltering an, attern -at'hing/ &e'ase Satellite 6 ri-aril= ses Pro,'ts to tra') so.t4are 'ons-tion @s'h as li'ense or ss'rition -anage-entB Pro,'t na-es are not signi.i'antl= i-ortant/ As a reslt 4e are sing a si-le an,


66


nonin,ing na-ing 'onvention .or Pro,'ts ri-aril= 'onsisting o. the ven,or or strearo?e't na-e an, the ro,'t na-e or rose/ . the ro,'t is se'i.i' to a arti'lar -a?or or -inor release o. Re, at Enterrise *in$ @.or e$a-le e'ase ,i..erent P )e=s are se, to sign itB 4e a,, an otional thir, seg-ent: _ ven,or or strea- ro?e't ` ) _ ro,'t na-e or rose ` Y  _ RE* release ` [

Aote, Pro,'t an, reositor= na-es .or Re, at Pro,'ts an, their asso'iate, reositories are ato-ati'all= 'reate, ase, on na-es ,e.ine, = Re, at/ n -ost 'ases Pro,'t an, reositories na-es have to e se, in 'on?n'tion @.or e$a-le 4hile a,,ing a,,ing a reositor= reositor= to a 'ontent 'ontent vie4B/ %nl= a .e4 .e4 oerations oerations are ,one ,one ,ire'tl= ,ire'tl= on a reositor= level @.or e$a-le a,,ing a .ilter rleB/

Aote, Even i. the na-e an, lael o. a reositor= 'on.igre, as art o. the Pro,'t have to e niGe onl= insi,e that arti'lar Pro,'t 4e are sing niGe laels .or all reositories a'ross ro,'ts/ Rather than having a stri't na-ing 'onvention .or Pro,'ts an, reositories 4e have trie, to re,'e the total n-er o. Pro,'ts an, reositories/ . =o have a s-aller n-er o. 'stoPro,'ts an, reositories the na-ing 'onvention e'o-es less i-ortant at least 'o-are, to other entities li)e host gros 'ontent vie4s or a'tivations 4hi'h all o''r .reGentl=/

3/3 4eys !or Red Hat5 Third2&arty and Custom So!t%are P )e=s are se, = Re, at an, -an= thir,art= so.t4are ven,ors to sign r- a')ages/ (he= are se, to veri.= the origin an, integrit= o. r- a')ages/ &= ,e.alt Re, at Enterrise *in$ allo4s =o to install onl= those r- a')ages that are P )e= signe, an, .or 4hi'h the relate, P )e= has een i-orte, to the lo'al r- ,ataase/ Io 'an ,isla= all P )e=s i-orte, to a s=ste- r- ,ataase 4ith the .ollo4ing 'o--an,: r- G gg)e= G. HF\na-e]F\version]F\release] ` F\s--ar=]XnH

Re, at Satellite sorts P)e= -anage-ent 4hi'h in'l,es i-orting an, asso'iating the )e=s to one or -ore reositories an, ,elo=ing an, i-orting the- into the r,ataases o. target s=ste-s/ refarc#)feed*ack+red#at%com

69


(he .ollo4ing sse'tions ,es'rie ho4 to -anage the ,i..erent P )e=s se, in this soltion gi,e/

Red Hat GPG Keys #or all Re, at Enterrise *in$ s=ste-s -anage, = Re, at Satellite the Re, at P Le=s @ht @htt ts s: : a''ess a'' ess /re /re,ha ,hatt /'o /' o- s se' e'r ritit= =t tea ea-) )e= e= B have alrea,= een installe, ,ring the rovisioning o. these s=ste-s/ (he a,vantage is =o ,onOt nee, to ta)e 'are o. i-orting an, ,elo=ing Re, at P )e=s to =or 'lients s=ste-s/ o4ever =o 'annot 'hange these )e=s an, their ,elo=-ent/

Third-party GPG Keys #or thir,art= so.t4are an, 'sto- so.t4are =o have to 'reate or ,o4nloa, the P )e= se, to sign the 'orreson,ing r- a')ages an, i-ort the- into Satellite/ (=i'all= the P )e=s are either lishe, at the 4esite o. =or so.t4are ven,or an,  or are art o. the RP a')age reositor= rovi,e, = this ven,or/

Custom GPG Keys Even thogh it is te'hni'all= .easile to 4or) 4ith nsigne, r- a')ages on oth Re, at Satellite an, its 'lient s=ste-s 4e strongl= re'o--en,e, that =o se a 'sto- P )e= to sign =or 'sto- r- a')ages/ #or 'o-rehensive ,o'-entation aot 'sto- P )e=s availale see: ht ts htt s: : a''ess a'' ess /re /re,ha ,hatt /'o /'o-,o ,o' '-e -ent ntat atio ion nen USR Re, e,  at  Sa Sate tellllitite e5 5/7 /7 ht-l ht-l ett e ttin ing g Starte,  i,e i ,ese se't 't  Di Digi gita tal  l Signatres.orRe,at  Ne Net4 t4or or) )Pa Pa') ')ag ages es /h /htt-ll n or,er to se RP a')agesigning 'aailities .or ACE internal so.t4are as 4ell 4eOve 'reate, an ACE P )e= to sign 'sto- a')ages/ eOve 'reate, a ne4 ser br-il,O on or il, host s=ste- an, 'reate, an, e$orte, a P )e= sing the .ollo4ing 'o--an,s: -),ir  /gng gg gen)e=  ott trn'ate, @,e.alt vales se,B gg list)e=s .ingerrint .ingerrint ho-er-il,/gngring/gg   20"R5"55126 2015052 Le= .ingerrint  7C92 2C!7 "&A "96! 1!C1 175C &! E1"# 5"5 5126


6=


i, ACE RP &il, Servi'e _r-il,a'-e/'o-` _r-il,a'- e/'o-` s 20"R#C&29"1E 2015052 gg e$ort ar-or 3ACE RP &il, Servi'e _r-il,a'-e/'o-`3 ` PACE

Importing GPG Keys into Satellite 6 Re, at Satellite a'ts as a De.initive e,ia *irar= an, allo4s =o to store an, ,elo= P )e=s .or its target s=ste-s/ As a reslt =o nee, to loa, all P )e=s that elong to the so.t4are =o 4ant Satellite 6 to -anage/ (a)e these stes: 1/ 2/ !/ /

Cli') Cli') on on Conte Content nt ` ` P P Le=s Le=s Cli' Cli') ) on on Ne4 Ne4 P P Le= Le= Enter an arori aroriate ate na-e na-e .or e$a-le e$a-le MPEPE*RE*7 MPEPE*RE*7 Sele't MPaste P Le= Contents Contents an, aste aste in the 'ontent 'ontent .ro.rohtt ht ts s: : ,l ,l /.e,oraro?e't /.e,oraro?e't /org /o rg    e ee el R l RPPLEIEPE*7 5/ Cli Cli') Save

Reeat the ro'e,re aove .or all P )e=s that elong to the ro,'ts an, signe, RP a')ages =o 4ant to -anage sing Satellite 6/ n or re.eren'ear'hite'tre i-le-entation 4eOve 'on.igre, 'on.igre, the .ollo4ing .ollo4ing P )e=s: )e=s: 7P7 !e- Aame

Source

P;4areRE* 6

ht t : htt : a') a ')ag ages es /v /v-4 -4ar are e/' /'oo- t too ools ls ) )e= e=s s; ;A ARE RE PAC PACLA LA NP N PDSA DSALEI LEI//

PEPE*RE*6

ht ts htt s: : ,l ,l /.e,oraro?e't /.e,oraro?e't /org /o rg    e ee el R l RPPLEIEPE* 6

PEPE*RE*7

ht ts htt s: : ,l ,l /.e,oraro?e't /.e,oraro?e't /org /o rg    e ee el R l RPPLEIEPE* 7

PJA&&8

htt ht t : : re reo/ai$/'o-RPPLEIJA&&8

PACE

_internal as ,es'rie, aove`

(he .ollo4ing 'o--an,s ,o4nloa, an, i-ort the )e= .or the RE*7 reositor= o. EPE* as an e$a-le: 4get % t-EPE* t-EPE*7/)e= 7/)e= htts:,l/.e, htts:,l/.e,oraro?e't oraro?e't/orge /orgeelRPP elRPPLEI LEIEPE*7 EPE*7


6&


ha--er gg 'reate na-e HPEPE*7H organiation ACE )e= t-EPE*7/)e=

A.ter =o have i-orte, =or P )e=s =o 'an vie4 the list o. all P )e=s i. =o 'li') on Content ` P )e=s/

Im&orting Red Hat So!t%are into Sate""ite  (he Re, at ss'rition -ani.est 4eOve i-orte, earlier gives a''ess to Re, at ro,'ts an, reositories/ o4ever sin'e -ost ro,'ts have several ar'hite'tres an, ro,'t versions Re, at Satellite Server allo4s the Satellite a,-inistrators to 'hoose 4hi'h reositories are reGire, = their organiations/

How to Enable Red Hat H at Software Repositories (he reositories nee, to e enale, in the Re, at Satellite Server to reare it .or s=n'hroniation/ (his is ,one via Content ` Re, at Reositories:

(he .ollo4ing stes sho4 ho4 to enale a Re, at reositor=: 1/ Cli') Content Content c Re, at Reo Reosito sitories ries// www%red#at%co www%red#at%com m

90


2/ Cli') on the ta o. the t=e o. 'ontent to e enale,/ (he tas are: RPs Sor'e RPs Deg RPs &eta S%s Do')er -ages %ther/ !/ E$an, ea'h Re, at ro,'t to e$a-ine the ,i..erent reositor= sets availale = 'li')ing on the arro4 = the ro,'t na-e/ / Choose 4hi'h Re, at reositor= sets =o 4ish to a,,/ Choosing it 4ill ato-ati'all= enale that reositor= .or =or Re, at Satellite server/ 5/ #or e$a-le a 'o--on asi' set o. ss'ritions 4hi'h 'ontain reositories 4ith the latest a')ages .or Re, at Enterrise *in$ 6 4ol, e: 6/ Re, at Enterrise *in$ 6 Server Li')start $"66 6Server Reositor= 7/ Re, at Enterrise *in$ 6 Server RPs $"66 6Server Reositor=

Aote, (he Re, at Satellite (ools reositor= -st e enale, e'ase it rovi,es 'lient s=ste-s registere, to the Satellite Server )atelloagent an, Pet a')ages/


91

www%red#at%com

Selecting the Appropriate Repositories n or soltion gi,e i-le-entation 4eOve s=n'hronie, the .ollo4ing reositories:             

Re, at Enterrise *in$ 7 Server RP.S $"66 9Server Re, at Enterrise *in$ 7 Server !ickstart $"66 9%1 Re, at Enterrise *in$ 7 Server k Optional RPs $"66 9Server Re, at Enterrise *in$ 7 Server  E?tras RPS $"66 9Server Re, at Satellite 3ools 6 &eta @.or RE* 7 ServerB @RPsB 9Server Re, at Software 4ollections RPs .or Re, at Enterrise *in$ 7 Server Re, at Enterrise *in$ 6 Server RP.s $"66 6%( Re, at Enterrise *in$ 6 Server !ickstart $"66 6%( Re, at Enterrise *in$ 6 Server k Optional RPs $"66 6%( Re, at Enterrise *in$ 6 Server k E?tras RPs $"66 6%( Re, at Satellite 3ools 6 &eta @.or RE* 6 ServerB @RPsB 6%( Re, at Software 4ollections RPs .or RE* 6 Server $"66 6%( Re, at Enterprise $irtualiation "gents .or RE* 6 Server @RPsB 6%(

A.ter sele'ting the Re, at reositories n,er Content ` Re, at Reositories the 'orreson,ing Re, at ro,'ts are ato-ati'all= 'reate,/ n or soltion gi,e set =o shol, no4 see a ro,'t 'alle, MRe, at Enterrise *in$ Server esi,e other Re, at ro,'ts/

Aote, Io 'annot 'hange the na-e o. ato-ati'all= 'reate, Re, at ro,'ts an, =o 'annot 'lone or s=n' the- t4i'e 4ith Satellite 6/ (o enale the s=n'hroniation o. Re, at So.t4are reositories sing the ha--er C* =o nee, to )no4 the .ollo4ing laels o. ea'h Re, at ro,'t =o 4ant to s=n'hronie:    

lael o. Pro,'t lael o. reositor= asear'h o. the reositor= release version o. the reositor=

(he .ollo4ing s'reenshots illstrate 4hi'h ite- n,er Content ` Re, at Reositories rovi,es 4hi'h lael/ (hese s'reenshots are ase, on an e$a-le o. an ol,er version o.

www%red#at%com

9'


T&oss Enterrise Ali'ation Plat.or- that isnOt se, in this soltion gi,e:

(he 'orreson,ing ha--er 'o--an, to enale this ro,'t in Satellite 6 4ol, e @this is ?st an e$a-le sin'e 4e ,onOt se this arti'lar ro,'t in or soltion gi,eB: ha--er reositor=set enale organiation ACE X ro,'t H NBoss Enterprise "pplication Platform H X asear'hH ?=668H X releaseverH 9Server H X na-e HNBoss Enterprise "pplication Platform 6 RHE2 9 ServerC RP.sC H

Synchronize Repositories A.ter s''ess.ll= enaling the ro,'t 4e nee, to start the s=n'hroniation an, @otionalB a,, it to a reglar s=n' lan/ Use the .ollo4ing 'o--an,s: ha--er ro,'t s=n'hronie organiation ACE X name HNBoss Enterprise "pplication Platform H ))as-nc


95

www%red#at%com

ha--er ro,'t sets=n'lan organiation %R X name HNBoss Enterprise "pplication Platform H X s=n'lan H,ail= s=n' at ! a/-/H

Aote, e se the ))as-nc otion to rn the reositor= s=n'hroniation in the a')gron,/ . this otion is not se, =o -st 4ait ntil the s=n'hroniation is .inishe, e.ore the se'on, 'o--an, asso'iates the ro,'t 4ith or s=n' lan/ Using as=n' allo4s s to enale an, s=n' other ro,'ts in arallel/ @arning, A Pro,'t or other entit= 'an have one lael ,ring initial reositor= enaling an, a ,i..erent reositor= lael se, to a,, it to a 'ontent vie4/ /n t#is e?ample t#e repositor- la*els for initial ena*ling are not t#e same ones used later w#ile creating content views / (he .ollo4ing ha--er 'o--an,s 'reate a 'ontent vie4 .or the T&oss Enterrise Ali'ation Plat.orreositor= enale, aove/ Note ho4 the highlighte, reositor= na-e ,i..ers .ro- the reositor= na-e 4e se, to enale this Re, at ro,'t reositor= earlier/ ha--er 'ontentvie4 'reate na-e 3'va?ossea73 ,es'rition 3T&oss EAP 7 Content ;ie43 X organiation 3%R3

X

ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X reositor= HNBoss Enterprise "pplication Platform 6%8 RHE2 9 Server RP.s ?=668 9Server H X na-e 3'va?ossea73 X ro,'t HT&oss Enterrise Ali'ation Plat.or-H

Aote, Ese'iall= ro,'ts 4ith a long li.e'='le li)e Re, at Enterrise *in$ 4ill 'ons-e a lot o. ,is) sa'e to store all 'orreson,ing a')ages/ Io nee, to ensre that the ,ire'tor= or -ontoint Satellite 6 ses to store a')ages @ /ar/lib/pulpBhas a s..i'ient sa'e e.ore enaling an, s=n'hing these reositories/ (he .ollo4ing )no4le,gease arti'le rovi,es e$a-les .or so-e t=i'al so.t4are reositories an, e$e'te, sa'e reGire,: htts: a''ess /re,hat /'o-soltions15"9!! (he .ollo4ing ha--er 'o--an,s have een se, to enale an, s=n'hronie all Re, at ro,'ts se, insi,e this soltion gi,e:  RHE29 repos ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X

www%red#at%com

98


asear'hH$"66H releaseverH7/1H X na-e HRe, at Enterrise *in$ 7 Server @Li')startBH ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH7ServerH X na-e HRe, at Enterrise *in$ 7 Server @RPsBH ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH7ServerH X na-e HRe, at Enterrise *in$ 7 Server  R Co--on @RPsBH ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH7ServerH X na-e HRe, at Enterrise *in$ 7 Server  E$tras @RPsBH ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH7ServerH X na-e HRe, at Satellite (ools 6 &eta @.or RE* 7 ServerB @RPsBH ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at So.t4are Colle'tions .or RE* ServerH X asear'hH$"66H releaseverH7ServerH X na-e HRe, at So.t4are Colle'tions RPs .or Re, at Enterrise *in$ 7 ServerH

 RHE26 repos #ere onl- RHE2 6%( to provide a legac- core *uild e?ample ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH6/5H X na-e HRe, at Enterrise *in$ 6 Server @Li')startBH ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH6/5H X na-e HRe, at Enterrise *in$ 6 Server @RPsBH ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH6/5H X na-e HRe, at Enterrise *in$ 6 Server  E$tras @RPsBH ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH6ServerH X na-e HRe, at Satellite (ools 6 &eta @.or RE* 6 ServerB @RPsBH ha--er reositor=set enale organiation 3%R3 X


9(

www%red#at%com

ro,'t HRe, at So.t4are Colle'tions .or RE* ServerH X asear'hH$"66H releaseverH6/5H X na-e HRe, at So.t4are Colle'tions RPs .or Re, at Enterrise *in$ 6 ServerH  i. 4e are sing RE; 4e nee, the RE; agents in the ,e,i'ate, 'hannel .or RE*6  4hile RE*7 a')ages are in'l,e, in R Co--on ha--er reositor=set enale organiation 3%R3 X ro,'t HRe, at Enterrise *in$ ServerH X asear'hH$"66H releaseverH6/5H X na-e HRe, at Enterrise ;irtaliation Agents .or RE* 6 Server @RPsBH  s-nc all RHE2 packages ha--er ro,'t s=n'hronie X na-e HRe, at Enterrise *in$ ServerH X organiation 3%R3 as=n' ha--er ro,'t s=n'hronie X na-e HRe, at So.t4are Colle'tions .or RE* ServerH X organiation 3%R3 as=n'

Aote, S=n'hroniing all these hge reositories 'an ta)e a .e4 hors/ Io 'an -onitor the 'rrent s=n'hroniation sing Content ` S=n'hroniation Stats/ e nee, to 4ait ntil all reositories have een s''ess.ll= s=n'hronie, *efore 'reating or 'ontent vie4s in the ne$t stes/

Im&orting (R/M) /ackaged Third2&arty So!t%are into Sate""ite  Re, at Satellite lets =o -anage an= RPa')age, an, signe, 'ontent an, is not li-ite, to Re,atrovi,e, so.t4are/ #or all nonRe,at 'ontent 4e nee, to 'reate Pro,'ts first% (hen 4e 'an later a,, the- to 'ontent vie4s/

Creating a new product in Red Hat Satellite Cli') Content c Pro,'ts/ 1/ Cli') +Ne4 Pro,'t / 2/ (=e in the na-e o. the ne4 Pro,'t in the Na-e .iel,/ !/ (=e in lael .or the ne4 Pro,'t in the *ael .iel,/ / Sele't a P )e= .ro- the P Le= ,ro,o4n -en/ 5/ Sele't a s=n'hroniation lan .ro- the S=n' Plan ,ro,o4n -en/ Alternativel= sele't the +Ne4 S=n' Plan lin) to 'reate a ne4 s=n'hroniation lan/ 6/ (=e in a ,es'rition o. the ne4 Pro,'t in the Des'rition .iel,/ 7/ Cli') the Save tton to save =or ne4 Pro,'t/

www%red#at%com

96


(he .ollo4ing ha--er 'o--an,s 'reate a 'sto- ro,'t an, reositor= o. t=e =- .or or ACE 'sto- r- a')ages: ha--er ro,'t 'reate na-e3%R3 organiation3%R3 ha--er reositor= 'reate na-e3%R RP Reo3 X organiation3%R3 ro,'t3%R3 X 'ontentt=eH=-H lishviahtttre X rl3CUS(%IUREP%3

&e'ase 4e i-ort RPa')age, so.t4are on a =- reositor= level 4e nee, to ,istingish et4een these t4o sitations:  Situation 1% (he so.t4are ven,or rovi,es a''ess to a reo/  Situation '% Io have to -anall= 'reate a reositor= 'onsisting o. these so.t4are a')ages/

Situation 1. Importing Third-party RPM Packages from an Existing yum Repository Satellite 6 rovi,es ato-ate, reositor= s=n'hroniation .or oth: Re, at an, !r, art= so.t4are/ Io 'an se the s=n'hroniation 'aailities .or all e$isting =- reositories/ (he easiest 4a= to 'on.igre reositories an, Pro,'ts is 4ith the reositor= ,is'over= .eatre o. Satellite 6/ (he .ollo4ing ro'e,re ,es'ries ho4 to set  a ro,'t 'alle, MRE*6 ;4are (ools an, ,etails s=n'ing the reositor= o. the 'orreson,ing a')ages .or RE*6/ 1/ Cli') Content ` Pro,'t 2/ Cli') on the MReo Dis'over= &tton !/ Enter the UR* htt : a')ages/v-4are/'o- toolses$ 5/12 insi,e the .iel, MUR* to ,is'over an, 'li') Dis'over / Sele't brhel6$"66in,e$/ht-lO @an, 'orreson,ing !2it reo i. se,B .ro- the reslting list an, 'li') the Create sele'te, tton 5/ Sele't a ne4 ro,'t 6/ Enter a na-e lael an, ,es'rition 7/ Sele't the aroriate P )e= @'reate, earlierB "/ Cli') Create


99

www%red#at%com

A.ter the age has reloa,e, =o nee, to sele't the reositor= an, 'li') the S=n' No4 tton/

Aote, Even i. there is a reositor= rovi,e, = ;4are 'ontaining ;4are tools .or RE*7 4e no longer nee, to se it/ Starting 4ith RE*7 Re, at Enterrise *in$ 'ontains the oenv-tools 4hi'h are the oen sor'e i-le-entation o. ;4are (ools/ ;4are .ll= sorts the sage o. oenv-tools as art o. Re, at Enterrise *in$/ #or -ore in.or-ation see: htt : )/v-4are/'o- sel.servi'e -i'rositessear'h/,of langageenUSK'-,,isla=LCKe$ternal,207!"0!

Situation 2. Importing Third-party RPM Packages Without an Existing yum Repository . =o have in,ivi,al a')ages =o asi'all= have t4o otions .or loa,ing the- into Satellite/ Io 'an: 1/ Psh the a')ages ,ire'tl= into Satellite 6 sing ha--er C* 2/ anall= 'reate a =- reo sing the 'reatereo tool an, s=n' a')ages

www%red#at%com

9=


Aote, e re'o--en, that =o t all =or 'sto- an, .oreign a')ages n,er a revision 'ontrol si-ilar to =or @PetB 'on.igration .or oth otions/ $ia Hammer (o loa, a 'sto- a')age via the ha--er 'o--an, line inter.a'e @otion 1B se this 'o--an,: ha--er reositor= loa,'ontent ro,'t 3%R3 X organiation %R na-e 3%R RP Reo3 X ath t-a'-ease'on.ig0/1/r-

Aote, Crrentl= =o 'an loa, onl= one a')age at a ti-e sing the loa,'ontent otion/ . =o rovi,e a reglar e$ression li)e t-a'-e^ 4hi'h 4ol, -at'h to -ore than one a')age  .ile the loa, .ails/ (he .ollo4ing s'rit sniet rovi,es a 4or)aron, .or this li-itation: .or a')age in @ls 1 athto=ora')ages^/r-B ,o ha--er reositor= loa,'ontent organiation %R na-e 3%R RP Reo3 ro,'t ACE ath 3a')age3 ,one

As an alternative =o 'an 'an -anall= 'reate a =- reositor= str'tre ot o. a ,ire'tor= o. =or 'sto- or .oreign r- a')ages = sing the 'reatereo tool 4hi'h is availale via the Re, at Enterrise *in$ ase 'hannel: 1/ 2/ !/ / 5/ 6/ 7/ "/

Do4nloa, the sor'es @i. not a')age, =etB Create a r-il, se' .ile @i. not a')age, =etB &il, the inar= r- sing r-il, 'o--an, @i. not a')age, =etB Sign the r- sing a P )e= @i. not signe, =etB Store the reslting r-@sB in a ,ire'tor= Create a lo'al =- reositor= sing 'reatereo a)e this reositor= availale via htt Con.igre this reositor= insi,e Satellite 6

&e'ase the Re, at Portal alrea,= has ,o'-entation aot these toi's 4e ,o not 'over thein this soltion gi,e/ See these lin)s .or -ore ,etails:


9&

www%red#at%com

 'reatereo sage: htts: a''ess /re,hat /'o- soltions9"92  enale htt e$ort: htts: a''ess/re,hat /'o-arti'les 1!!51!

Im&orting ther (ot R/M2&ackaged) So!t%are into Sate""ite  #or so.t4are not =et a')age, as a RP =o asi'all= have t4o otions:  Delo= na')age, .iles sing Pet @as art o. Satellite 6B or  Pa')age the so.t4are as RPs an, ,elo= sing Satellite 6 so.t4are -anage-ent

"dvantages and disadvantages (he a,vantage o. sing Pet .or inar= ,elo=-ent is that =o ,onOt have to ,eal 4ith a')aging an, its @slightB 'o-le$it=/ Io 'an se e$e' state-ents in Pet to ,o4nloa, e$tra't an, e$e'te installer s'rits/ Ese'iall= .or inar= installers @sall= onl= sorte, .ro- the ven,or i. the installer has een se, .or ,elo=-entB the a,vantage is that even i. =o a')age the inar= reslts o. the installer =o still -ight e in a gre= area regar,ing ven,or sort/ #or an overvie4 o. ho4 to se Pet to ,elo= inar= .iles an, installers see: htts: etlas/'o-resentations et 'a-ortlan,2014rangling!r,art=installe rset / Desite the a,,itional e..orts reGire, .or r- a')aging an ali'ation this aroa'h has so-e signi.i'ant a,vantages an, 4e re.er this otion/ Using RP as the ,elo=-ent .or-at rovi,es the .ollo4ing @a,,itionalB ene.its:        

Unatten,e, install  ninstall Ugra,es an, ,o4ngra,es sorte, ;ersion 'ontrols an, a 'hangelog Ato-ati' resoltion o. ,een,en'ies Con.li't ,ete'tion  han,ling No il, tools reGire, on target s=ste-s @onl= on the il, hostB er=ing 'he')s- an, veri.i'ation 'aailities Ailit= to sign RPs 4ith P @re.erre,B

iven this 'o-rehensive list o. a,vantages 4e re'o--en,e, that =o 'onsi,er a')aging =or thir,art= an, 'sto- ali'ations as RPs/ o4ever 4e 4ill e$lain the tar/g ase, s'enario insi,e this soltion gi,e sing the or,Press as a sa-le ali'ation/ e are sing latest version o. or,Press @ htt : 4or,ress /orglatest/tar /g B /1/1 at the ti-e o. this 4riting/ www%red#at%com

=0


Deploying Unpackaged Files Using Puppet (as Part of Satellite 6) &e'ase Pet -o,les 'an 'onsist o. oth te$t an, inar= one otion is to se Pet to ,elo= inar= .iles as art o. Pet -o,les/ &e'ase 4e re'o--en, sing RP a')ages to ,elo= inar= .iles this soltion gi,e ,oes not 'over this se 'ase/

Packaging as RPM and Deploying Using Satellite 6 Software Management (he .ollo4ing ro'e,re ,es'ries the reGire, stes to trans.or- na')age, so.t4are into Satellite-anageale RP 'ontent/ 1/ 2/ !/ /

Do4nloa, the tar/g .ile .ro- ven,ors  oen sor'e ro?e't 4esite Pa')age it sing the r-il, 'o--an, Sign it 4ith =or 'sto- P )e= @shol, e loa,e, to SatelliteB Psh the a')age into SatelliteOs 'sto- 'hannel or 'reate a reositor= sing 'reatereo tool an, s=n'hronie it as e$laine, aove

n or soltion gi,e set 4e have not se, 'sto- RP a')ages/ o4ever 4e have 'reate, a 'storeositor= as art o. or ACE ro,'t 4hi'h =o 'ol, se in =or environ-ent/

Im&orting /u&&et Content into Sate""ite  Pet is a tool .or al=ing an, -anaging s=ste- 'on.igrations/ Pet 'olle'ts s=stein.or-ation or .a'ts an, ses this in.or-ation to 'reate a 'sto-ie, s=ste- 'on.igration sing a set o. -o,les/ (hese -o,les 'ontain ara-eters 'on,itional arg-ents a'tions an, te-lates/ Pet is se, as either a lo'al s=ste- 'o--an, line tool or in a 'lientserver relationshi 4here the server a'ts as the Pet -aster an, alies 'on.igration to -ltile 'lient s=ste-s sing a Pet agent/ (his rovi,es a 4a= to ato-ati'all= 'on.igre ne4l= rovisione, s=ste-s either in,ivi,all= or si-ltaneosl= to 'reate a 'ertain in.rastr'tre/ Satellite 6 ses Pet in several 4a=s:  Satellite 6 i-orts Pet -o,les se, to ,e.ine the s=ste- 'on.igration/ (his in'l,es 'ontrol over -o,le versions an, their environ-ents/  Satellite 6 'an i-ort sets o. ara-eters .ro- ara-eterie, Pet 'lasses .roPet -o,les/ Users 'an a''et the ,e.alt vales .ro- Pet 'lasses or rovi,e their o4n at a gloal or s=ste-se'i.i' level/  Satellite 6 triggers the e$e'tion o. Pet et4een the -aster an, the rese'tive


=1

www%red#at%com

agents on ea'h s=ste-/ Pet rns 'an o''r either: d Ato-ati'all= s'h as a.ter the rovisioning ro'ess 'o-letes or as a ,ae-on that 'he')s an, -anages the -a'hineHs 'on.igration over its li.e'='le/ d anall= s'h as nee,ing to trigger an i--e,iate Pet rn/  Satellite 6 'olle'ts reorts .ro- Pet a.ter the 'on.igration 4or).lo4 'o-letes/ (his hels 4ith a,iting an, ar'hiving s=ste- 'on.igration over long ter- erio,s/ (hese .n'tions rovi,e an eas= 4a= .or sers to 'ontrol s=ste- 'on.igration ase'ts o. the ali'ation li.e'='le sing Pet/ an= Pet -o,les are availale .ro- Pet #orge an, 'an e se, in 'on?n'tion 4ith Satellite 6/ (o s=n'hronie the Pet #orge reositor= 4ith Satellite 6 see these instr'tions: htts: a''ess /re,hat /'o-soltions129051!

Aote, Crrentl= =o 'annot li-it 4hi'h sset o. a reositor= =o 4ant to s=n'hronie/ n the 'ase o. Pet.orge =o -st s=n' the entire reositor= 4hi'h 'rrentl= 'ontains !2"0 -o,les/ e 4ill 'reate so-e sa-le Pet -o,les in Stes 5 an, 6/ (his 'hater ri-aril= .o'ses on i-orting e$isting -o,les/ n or,er to i-ort Pet -o,les into Satellite 6 4e have t4o otions:

Option 1% Dire'tl= sh the -o,le to the 'orreson,ing Satellite 6 ro,'t reositor= Option '% Store the -o,le in git an, se the git reositor= s=n'hroniation o. Satellite6 #or oth otions the .inal ,estination o. or Pet -o,le in Satellite 6 is the Pet reositor= @as art o. the ACE Pro,'t 'reate, earlierB/ (he .ollo4ing ha--er 'o--an, ,ire'tl= shes the Pet -o,le into the reositor= @otion 1B: ha--er v reositor= loa,'ontent organiation MACE ro,'t ACE na-e 3ACE Pet Reo3 ath a'-e-ot,/tg

o4ever 4e re'o--en, sing otion 2: Storing the reslting Pet -o,les in git to ensre version 'ontrol an, then s=n'hroniing the git reo or sele'te, -o,les = sing Satellite 6 s=n' lans or -anal s=n'/

www%red#at%com

='


. 4e ass-e that there is alrea,= one @or so-eti-es -oreB git servers or reositories in la'e the ne$t stes .o's on sing the e$isting git reositor=@iesB in 'on?n'tion 4ith Re, at Satellite 6/ . =o ,o not have an e$isting git reositor= or ,e,i'ate, server in la'e Step 6 ,es'ries ho4 to set an, 'on.igre a server li)e that/ (o allo4 ato-ati'all= an, reglar s=n'hroniation sing Satellite 6 s=n' lans o. this git reositor= 4e have to trans.or- the git reositor= into a .or-at that Satellite 6 'an se .or s=n'hroniation/ #or instr'tions see: htts: a''ess /re,hat /'o- soltions 117!"0! (he reGire, tool let-o,leil,er is alrea,= installe, on the Satellite 6 server = ,e.alt/ &e'ase 4e 4ant to se or git server as the single sor'e o. Pet -o,les 4e nee, to install this a')age on or git servers as 4ell/ See the .ollo4ing Lno4le,gease arti'le .or the reGire, ro'e,re: htts: a''ess/re,hat /'o- soltions1!7"66! A.ter installing this tool 4e 'reate the -o,le reositor=: =- = install let-o,leil,er -),ir var444ht-l-o,les 'h-o, 755 var444ht-l-o,les let-o,leil,er ott,irvar444ht-l-o,les rlgit-=gitserver/'o-:-=-o,les/git ran'h,evelo

#inall= 4e have to a,, a reositor= @t=e: betOB that elongs to the ACE generi' ro,'t that 4e 'reate, earlier an, s=n'hronie it 4ith or git host: ha--er reositor= 'reate na-e3%R Pet Reo3 X organiation3%R3 ro,'t3%R3 X 'ontentt=eHetH lishviahtttre X rl3CUS(%PUPPE(REP%3 ha--er reositor= s=n'hronie organiation 3%R3 ro,'t 3%R3 as=n'

Aote, Althogh the let-o,leil,er er.or-s oth the et-o,le il, an, the l-ani.est 'reation there is a si-ler 4a= to 'reate ?st the l -ani.est/ . =o have alrea,= ilt =or Pet -o,les s''ess.ll= =o 'an se the .ollo4ing s'rit to 'reate the PU*PAN#ES( .ile reGire, .or the Satellite 6 reositor= s=n'hroniation: Qsrinenv ash


=5

www%red#at%com

.or .ile in  ,o e'ho .ilejsha256s- .ile  a4) H\ rint 1 ]Hjjstat ' HFsH .ilej ,one

Unli)e the let-o,leil,er tool this aroa'h lets =o store the reslting Pet -o,les in ,i..erent s,ire'tories/ eOre sing this aroa'h as art o. a git hoo) to ato-ati'all= 'reate the l -ani.est @in 'ase a ne4 Pet -o,le is 'he')e, inB/ #or -ore ,etails see the relate, Pet 'on.igration 4hi'h is ,es'rie, as art o. the "4.E git server configuration e?ample in Step 6 /

Im&orting $ocker Container Images into Sate""ite  Do')er is an oen sor'e ro?e't that ato-ates ,elo=ing ali'ations insi,e *in$ Containers an, lets =o a')age an ali'ation 4ith its rnti-e ,een,en'ies into a 'ontainer/ *in$ 'ontainers enale rai, ali'ation ,elo=-ent an, si-ler testing -aintenan'e an, troleshooting 4hile i-roving se'rit=/ #or -ore in.or-ation see the et Starte, 4ith Do')er #or-atte, Container -ages on Re, at S=ste-s arti'le on the Re, at Csto-er Portal/ Satellite 6/1 intro,'es ne4 -anage-ent 'aailities relate, to 'ontainers that enale organiations to ,elo= ali'ations rai,l=/ ith Satellite sers 'an easil= -anage version an, ,elo= Do')er 'ontent/ -orting 'ontent an, -anaging the li.e'='le o. 'ontainer i-ages are si-ilar to -anaging other 'ontent t=es @r- an, PetB/ Io have to 'on.igre reositories that 'an e n,le, 4ith Pro,'ts an, then se those reositories insi,e 'ontent vie4s si-ilar to RP a')ages or Pet -o,les/ Io 'an ,e.ine the .ollo4ing Do')er i-age reositories  registries:  Re, at Do')er -age Registr= @registr=/a''ess/re,hat/'o-B  Do')er @htts: registr= /h/,o')er/'o- B  Csto- @e/g/ internalB Do')er i-age registries

Aote, At the ti-e o. this 4riting the ne4 Re, at reositor= -anage-ent @Content ` Re, at ReositoriesB ta 'alle, MDo')er -ages ,oes not 'ontain 'ontainer i-ages/ Crrentl= the Re, at 'ontainer i-age registr= has to e 'on.igre, as an Me$ternal registr=/

www%red#at%com

=8


(he -ain rose o. Satellite 6 in the area o. 'ontainer -anage-ent is to rovi,e Satellite 6 'ontentli.e'='le -anage-ent 'aailities to this se'i.i' 'ontent t=e si-ilar to tra,itional r- an, Pet ase, 'ontent/ (his 'aailit= also in'l,es 'ontainer i-age 'ontent -anage-ent 4hi'h allo4s =o to er.or- lo'al 'a'hing on 'ontainer hosts/ #or this arti'lar soltion gi,e 'ontainer i-age -anage-ent is ot o. s'oe/ All the Do')er-anage-ent 'aailities are ,o'-ente, in the Satellite 6/1 User i,e in a ,e,i'ate, 'hater 'alle, or)ing 4ith Containers/

Aote, n Re, at Satellite =o 'an ,elo= 'ontainers onl- on a Do')er 'o-te resor'e/ As a reslt 4hen =o atte-t to vie4 or 'reate 'ontainers .or the .irst ti-e Satellite ro-ts =o to 'reate a Do')er 'o-te resor'e/ (his soltion gi,e e$lains ho4 to 'reate the reGire, 'ontent vie4s Pet -o,les host gros an, 'o-te resor'e in Step ( Step 6 an, Step 9/

Con!iguring Regu"ar Re&ository Synchroni,ation by -sing Sync /"ans Reglar .reGent s=n'hroniation is reGire, to -aintain ,ata integrit= et4een a')ages as 4ell as -a)ing sre that a')ages are ,ate, to the latest se'rit= .i$es/ Re, at Satellite rovi,es the ailit= to 'reate s'he,le, s=n'hroniation lans that allo4 a')age ,ates at intervals 'onvenient to the organiation/ (he .ollo4ings ro'e,re ,es'ries ho4 to 'reate a ne4 s=n' lan: 1/ 2/ !/ /

Cli') Content c S=n' Plans/ Cli') the Ne4 S=n' Plan lin) to 'reate a ne4 s=n'hroniation lan/ Enter the Na-e Des'rition an, other ,etails .or the lan/ Cli') Save to 'reate the s=n'hroniation lan/

A.ter =o have 'reate, a s=n'hroniation lan =o nee, to asso'iate ro,'ts 4ith that lan to 'reate a s=n'hroniation s'he,le/ (he .ollo4ing ro'e,re ,es'ries ho4 to 'reate a s=n'hroniation s'he,le in Re, at Satellite 6/ 1/ Cli') Content c S=n' Plans an, sele't the s=n'hroniation lan =o 4ant to i-le-ent/ 2/ Cli') Pro,'ts c A,, in the s=n'hroniation lan -ain age/ !/ Sele't the 'he')o$ o. the ro,'t to asso'iate 4ith the s=n'hroniation lan/ / Cli') A,, Sele'te,/


=(

www%red#at%com

Aote, Althogh =o ,o not have to 'on.igre reglar reositor= s=n'hroniation 4e strongl= re'o--en, that =o reglarl= s=n'hronie at least the Re, at ro,'ts an, reositories/ (he reason .or this @esi,es ato-ationB is that it is -ore e..i'ient/ %ther4ise all reorting o. the errata stats is ase, on the last s=n'hroniation an, the errata stats -ight not e  to ,ate/ (hogh Satellite 6/1 ,oes sho4 errata ali'ale to s=ste-s in,een,ent o. its real availailit= @-anage, via 'ontent vie4sB it 'ol, not sho4 errata availale at re,hat/'o- an, insi,e CDN i. the= are not =et s=n'e, to Satellite 6/ (his li-itation also alies i. a 'riti'al errata is lishe, et4een t4o ,ail= s=n' rns/ . there is 'riti'al errata that reGires an e-ergen'= 'hange =o 'an al4a=s s=n' the ro,'t an, reositories -anall= @sing the ha--er C* either on the reositor= or at the Pro,'t levelB/ n or soltion gi,e i-le-entation 4eOve 'reate, the .ollo4ing s=n' lan: Parameter

$alue

Na-e

,ail= s=n' at ! a/-/

nterval

,ail=

Start ,ate

2015015

Start ti-e

0!:00

(he .ollo4ing ha--er 'o--an, 'reates the ,ail= s=n' lan: ha--er s=n'lan 'reate na-e H,ail= s=n' at ! a/-/H X ,es'rition HA ,ail= s=n' lans rns ever= -orning a ! a/-/H X enale,tre X interval ,ail= X organiation 3%R3 X s=n',ate H2015015 0!:00:00H

All .or-erl= 'on.igre, ro,'ts 4ere a,,e, to this s=n' lan/  get all ro,'ts 4hi'h have een s=n'e, @ignore nots=n'e,B .or i in @ha--er 'sv ro,'t list organiation %R erage 999  gre vi HDH  gre vi nots=n'e,  a4) # \Hrint 2H]B ,o ha--er ro,'t sets=n'lan s=n'lan H,ail= s=n' at ! a/-/H organiation %R na-e i ,one

www%red#at%com

=6


A.ter =o i-ort 'ontent .ro- ,i..erent sor'es an, a,, all ro,'ts to the s=n'hroniation lan 'ontent 4ill e ,ate, reglarl= ever= -orning/ Io 'an -onitor the s=n'hroniation stats i. =o go to Content ` S=n' Stats an, then 'li') on E$an, All/ Io shol, see a .ll list o. all =or Pro,'ts an, their reositories/ Io 4ill also see 4hen s=n'ing 4as starte, ho4 long it too) an, i. it has een 'o-lete,:


=9

www%red#at%com

Step 4: Define your Content lifecycle Satellite 6 intro,'es ne4 'on'ets that sort a,van'e, so.t4are li.e'='le -anage-ent/ &esi,es the Re, at so.t4are reositor= an, errata the .ollo4ing ne4 'on'ets have een intro,'e, 4ith Satellite 6:  Casles that rovi,e .e,erate, -anage-ent o. 'ontent @see Step 'B  A,van'e, s=n'hroniation -anage-ent .or so.t4are @=-B Pet @gitB an, Do')er i-age @registr=B reositories @see Step 5B  *irar= @stageB that a'ts as a De.initive e,ia *irar= @D*B @see Step 5B  Pro,'ts as reositor= n,les to tra') their 'ons-tion s'h as .or li'ense -anage-ent roses @'overe, in this steB  'ontent vie4s @C;sB an, 'o-osite 'ontent vie4s @CC;sB @'overe, in this steB  *i.e'='le Environ-ents an, *i.e'='le Environ-ent Paths @'overe, in this steB (hese 'on'ets allo4 .or the i-le-entation o. a,van'e, li.e'='le -anage-ent/

Sate""ite  Content 6ie%s Definition Content vie4s are -anage, sele'tions o. 'ontent that 'ontain one or -ore reositories @=-  PetB an, that allo4 otional .iltering/ #ilters 'an e either in'lsive or e$'lsive/ Use .ilters to:  (ailor a s=ste- vie4 o. 'ontent .or li.e'='le -anage-ent  Csto-ie 'ontent to e -a,e availale to 'lient s=ste-s /f ou "re
Sate""ite  Content 6ie% #i!ecyc"e 'er'ie% (he 'ontent vie4 li.e'='le has the .ollo4ing stages: 1/ 2/ !/ /

Create a ne4 or a,at an e$isting 'ontent vie4 Plish the ne4 @version o. theB 'ontent vie4 Pro-ote the 'ontent vie4 to the ne$t li.e'='le stage@sB Retire @,eleteB a @arti'lar version o. aB 'ontent vie4


=&

www%red#at%com

Plishing a 'ontent vie4 -a)es it availale insi,e the *irar=/ Ass-ing that @nearl=B all hosts are ss'rie, to a arti'lar li.e'='le environ-ent sing host gros the lishing ste ,oes not a..e't e$isting hosts/ As the ,e.alt a version o. a 'ontent vie4 al4a=s .lo4s .role.t to right in the li.e'='le environ-ent ath/

@arning, Io cannot skip a particular life)c-cle environment Q stage wit#in a promotion pat# / o4ever the s ame content view can *e associated to more t#an one life)c-cle environment pat# and to different stages wit#in t#ese environment pat#s / (he e?ception .or this is the s=ste- level or e-ergen'= errata .eatre/ Starting 4ith Satellite 6/1 =o 'an sele't an, al= errata to in,ivi,al hosts in,een,ent o. the 'rrent 'ontent insi,e the 'ontent vie4/ Using this ne4 .eatre a minor version of a content view 4ill e 'reate, an, ato-ati'all= ro-ote, onl- to t#e lifec-cle environment t#e #ost *elongs to / (his in'l,es s)iing o. -ltile li.e'='le environ-ents/ #rther ,etails 'an e .on, in Ste 9 >se 4ase 8C /ncremental >pdates ) "ppl- Selected Errata to Hosts 'overing this e-ergen'= errata .eatre/

E?ample, (he sa-e 'ontent vie4 'an e ro-ote, to Dev A an, Pro, in one ath t re-ain in stage ADev in a se'on, li.e'='le environ-ent ath/ Step & 'overs ,i..erent 'ontent vie4 li.e'='le s'enarios in ,etail/ e 'reate 'ontent vie4s in the ne$t se'tion/

Content 6ie% and Com&osite Content 6ie% Scenarios Io 'an se 'ontent vie4s an, 'o-osite 'ontent vie4s to a'hieve -ore than one t=e o. goal/ (his ,iagra- sho4s .or 'o--on s'enarios ho4 'ontent vie4s an, 'o-osite 'ontent vie4s 'an e se,:

www%red#at%com

&0


(he ne$t se'tion ,es'ries ea'h o. these s'enarios an, 'an hel =o ,e'i,e 4hi'h one .its est in =or arti'lar environ-ent/

Scenario A) The “All in one” Content View

(his aroa'h to 'ontent vie4s ri-aril= targets re,'ing the total n-er o. 'ontent vie4s/ nstea, =o 'reate a -ltirose 'ontent vie4 that 'ontains all ne'essar= 'ontent .or all @or at least -ostB o. =or s=ste-s/ (his C; 4ol, sho4 the interse'tion o. all or -an= s=ste-s/ Io 'an also slit reositories an, ro,'ts into -ltile 'ontent vie4s/ o4ever =o ,o have the otion to *undle as man- as possi*le repositories into a small num*er of content views/ (he rle o. th- here is the igger the etter/ (o avoi, -aintaining -ore se'i.i' 'ontent vie4s =o 'an even a,, reositories that are not se, = all s=ste-s elonging to the host gros asso'iate, 4ith this 'ontent vie4/


&1

www%red#at%com

"dvantages  Io have a small num*er of content views to -anage/ . 'reating an, -aintaining 'ontent vie4s is a ig 'hallenge @.or e$a-le =o ,o not have the ti-e resor'es or ,is) 'aa'it=B this otion rovi,es an alternative .or at least so-e environ-ents or sset o. s=ste-s/  Content vie4s 'an in'l,e ,i..erent Re, at @an, thir, art=B ro,'ts/ Sin'e ea'h reositor= 'an e in,ivi,all= ss'rie, sing a'tivation )e=s @'overe, in Step 9B this -ight 'ontain reositories not ever= s=ste-s nee,s to e ss'rie, to as 4ell/

Aote,  Content vie4s ,e.ine onl= the 'ontent set that 'an e slit into se'i.i' ro,'ts @an, there.ore reositoriesB/ Ea'h ro,'t is asso'iate, 4ith an assigne, ss'rition that is a'tivate, 4ith an a'tivation )e=/  (his otion 4ol, re,'e the n-er o. 'ontent vie4s t it 4ol, also increase t#e num*er of activation ke-s /

Disadvantages (his s'enario li-its =or .le$iilit= an, the ,egree to 4hi'h =o 'an se the 'ontent vie4 'aailities/

E?amples,  Io -ight e nale to se .ilters or the= -ight e'o-e hge an, ,i..i'lt to -aintain/  (i-ease, snashots @an i-ortant rose o. 'ontent vie4sB -ight e'o-e ,i..i'lt to se/ . different content sets @reositoriesB are c#anged at the sa-e ti-e this 'hange 'an affect a #uge num*er of s-stems /  ,i..i'lt sin'e different content sets @reositoriesB -ight get c#anged at the sa-e ti-e an, affect a #uge num*er of s-stems /

Scenario B) Host-Specific or Server Type Content Views

www%red#at%com

&'


Satellite 6 -aintains a 1:1 relationshi et4een hosts an, @'o-ositeB 'ontent vie4s/ As a reslt so-e 'sto-ers ,e.ine a dedicated content view for eac# dedicated #ost or server t-pe roleC / (his aroa'h -ight e a goo, otion i.:  Io se onl= a .e4 ,i..erent host t=es an, ,o not nee, to segregate ,i..erent la=ers o. resonsiilit=/  Io have a ver= s-all or not ver= 'o-le$ environ-ent/  Io have a larges'ale environ-ent that 'onsists ri-aril= o. si-ilar server t=es li)e a t=i'al PC or Develo-ent environ-ent set/ @(his is a vali, otion e'ase o. the lo4 n-er o. ,i..erent 'ontent vie4s/B

Aote, n -an= t=i'al 'sto-er environ-ents =o -ight have -ore server t=es or roles @thogh at least so-e o. the- -ight rese other Gite si-ilar 'ontent vie4sB/ n an environ-ent o. more t#an 50 different role t-pes one o. the other s'enarios ,es'rie, in this se'tion -ight -a)e -ore sense @ase, on the ass-tion that there are so-e share, ali'ation 'o-onents @ro.ilesB a'ross these serversB/ "dvantages (his s'enario 'o-letel= ,e.ines the 'ontent that is -a,e availale to a arti'lar s=ste- or gro o. s=ste-s/ Io 'an 'hange the 'ontent o. a sele'te, set o. s=ste-s  to a single host/ #or a t=i'al -ission'riti'al or lega'= s=ste- this aroa'h -ight e a goo, otion e'ase it avoi,s otential ris)s ase, on share, 'hanges that al= to this 'riti'al s=ste-/

Disadvantages (his aroa'h revents:


&5

www%red#at%com

 the rese o. 'ontent that is share, a'ross several s=ste-s/  (he segregation o. la=ers o. ,ties @.or e$a-le the ,ivision et4een the oerating s=ste- an, the ali'ations on to o. itB/ (o ensre 'onsisten'= o. ,ates to all these ,i..erent hostt=ese'i.i' 'ontent vie4s =o nee, to ensre that ea'h ,ate o. arti'lar 'ontent ite-s @.or e$a-le a arti'lar se'rit= errataB e'o-es art o. all a..e'te, 'ontent vie4s that se the so.t4are a')age eing ,ate,/ (his -eans that =o have to er.or- the 'ontent vie4 ,ate oeration @'hange or a,at .ilter lish an, ro-oteB .or ea'h an, ever= a..e'te, 'ontent vie4/

Aote, Even sing ato-ation li)e ha--er C* sage 4e ,o not recommend this s'enario e'ase it 'an lea, to #ig#er -aintenan'e e..orts/ n a,,ition i. the ,ates 'annot e ,one si-ltaneosl= this role- -ight reslt in ,i..erent 'ontent sets or ,i..erent ti-ease, snashots o. se'i.i' 'ontent vie4s i. 'ontent has 'hange, et4een these ,i..erent 'ontent vie4 ,ates/ (he rle o. th- here is: 3#e #ig#er t#e degree of standardiation is t#e less t#is scenario is t#e *est option / Nevertheless it -ight e a vali, alternative .or some C special or critical s-stems /

Scenario C) Host Specific Composite Content Views

Another aroa'h that targets host or server t=e se'i.i' 'ontent is to 'reate composite content views .or ea'h server t=e or role/ Using 'o-osite 'ontent vie4s -eans =o 'an 'hange ?st a arti'lar sset o. the 'ontent -a,e availale to a host or host gro t leave other 'ontent unc#anged/ Althogh this aroa'h is ossile = sing 'ontent vie4s an, .ilters .or in,ivi,al reositories it is -'h #arder to maintain filter rules than ?st sele't a

www%red#at%com

&8


arti'lar 'ontent vie4 version/ A t=i'al s'enario is to have a ,e,i'ate, 'ontent vie4 .or ?st the Puppet 'on.igration/ (his C; is t=i'all= ,ate, -ore .reGentl= than the so.t4are 'ontent that re-ains n'hange,/ Io 4ol, 'hange onl= the Pet 'ontent vie4 version insi,e the 'o-osite 'ontent vie4 4hile leaving the so.t4are'ontentrelate, 'ontent vie4 version n'hange,/

"dvantages Using composite 'ontent vie4s -a)es it easier ,eal 4ith 4i,el= ,iverge, release '='les 4hen ,i..erent 'ontent ssets are en'aslate, in ,e,i'ate, 'ontent vie4s/

Disadvantages  Ior vie4 o. the 'ontent is host an, not ali'ation se'i.i'/  t 'an e ,i..i'lt to a'hieve a 'ertain level o. stan,ar,iation ,een,ing on ho4 -an= ,i..erent server t=esroles are se, insi,e an environ-ent/

Scenario D) Component-Based Composite Content Views

(his s'enario 'an hel =o:  a'hieve the #ig#est degree of standardiation of commonl- used application components/  et a ,i..erent erse'tive on 'ontent segregation sing Re, at Satellite 6 'ontent vie4s/ n 'ontrast to revios s'enarios this one has an application)component view instead of a #ost)centric or servert=ese'i.i' view/


&(

www%red#at%com

. =o se the same application component more t#an once as art o. a 'ontent set .or in,ivi,al role t=es it 'ol, e -ove, into a ,e,i'ate, 'ontent vie4/

E?ample, . PostgresGl is se, as a ,ataase a')en, .or a li' 4esite an, also as a a')en, .or or a') -anage-ent s=ste- a ,e,i'ate, 'ontent vie4 .or PostgreS* @ro.ileB is se, as a s#ared profile for *ot# role)specific composite content views / "dvantages (his soltion gi,e targets Stan,ar, %erating Environ-ents @S%EB/ %ne o. the ri-ar= goals o. an S%E is a highl= standardied and automated environment to i-rove overall operational efficienc- / e are sing this s'enario insi,e this soltion gi,e/

Disadvantages 3#is scenario ma- cause an increased num*er of content views% Sin'e 'o-osite 'ontent vie4s have to e 'reate, in addition to all 'ontent vie4s this s'enario onl= -a)es sense i. the n-er o. rolese'i.i' 'o-osite 'ontent vie4s ls the inherent resale  share, ali'ation 'o-onents is not signi.i'antl= higher than the n-er o. 'ontent vie4s in S'enario & @in,een,ent o. the n-er o. 'o-osite 'ontent vie4s in s'enario CB/ Resing share, ali'ation 'o-onent 'ontent vie4s -a= solve this role-/ . a lot o. in,ivi,al ,erivatives e$ist .or ever= ali'ation 'o-onent this s'enario 4ol, signi.i'antl= in'rease the total n-er o. 'ontent an, 'o-osite 'ontent vie4s @ese'iall= i. the latter ones are 'reate, .or all ossile 'o-inations o. slightl= ,i..erent ali'ation 'o-onent 'on.igrationsB/

Sate""ite  Content 6ie% Recommendations Content vie4s are -anage, sele'tions o. 'ontent 4hi'h 'ontain one or -ore reositories @=-  Pet  'ontainer i-agesB 4ith otional .iltering/ #ilters are se, are se, to 'sto-ie 'ontent to e -a,e availale to 'lient s=ste-s/

How Filters Work  #ilters 'an e either in'lsive or e$'lsive an, tailor a s=ste- vie4 o. 'ontent .or li.e'='le -anage-ent/  &e.ore sing .ilters =o nee, to understand #ow filters work and consider potential pitfalls / www%red#at%com

&6


 . no .ilter is alie, to a 'ontent vie4 all 'ontent @Mever=thingB o. the asso'iate, reositories at t#e time of pu*lis#ing is in'l,e, in this 'ontent vie4  #ilters al= onl= to so.t4are 'ontent @=- reositoriesB t not to Puppet modules/  Io 'an se -ltile .ilters .or ea'h 'ontent vie4/ #or e$a-le sing an Min'l,e .ilter a,,s onl= the a')age @groBs =oOve sele'te, an, e$'l,es all other a')ages/  n'l,ing .ilters ,oes not resolve an- dependencies o. the a')ages liste, in the .ilters/

Recommendations for Filters  (est 4hi'h a')ages are reGire, = the a')ages =o 4ant to t insi,e the Min'l,e .ilter/ Io shol, also test i. all ,een,en'ies 'ol, e satis.ie, 4ith =or 'ontent vie4 ,e.inition/  Do not se Min'l,e .ilter insi,e the %S'ore il, 'ontent vie4 to avoi, -issing ,een,en'ies that -ight revent a s''ess.l )i')start o. ne4 servers/  . =o se include filters =o shol, -a)e a reglar hait o. selecting eac# individual repositor- affected *- t#is filter rule / &= ,e.alt a .ilter alies to all reositories @resent an, .treB elonging to this 'ontent vie4/ . =o 'reate an Min'l,e .ilter .or a arti'lar a')age elonging to one o. the asso'iate, reositories an, ,onOt sele't this arti'lar reositor= onl= the a')age ,e.ine, in this .ilter rle 4ill e art o. this 'ontent vie4/ No other a')ages .ro- the other reositories 4ill e availale sin'e the include filter e?cludes all ot#er packages from all repositories insi,e this 'ontent vie4/  Use e?clude filters to stri ,o4n the availale 'ontent an, to e$'l,e a')ages a')age gros or errata/ e 4ill rovi,e an e$a-le a')age that has the e$'l,e .ilter as art o. or 'ore il, 'ontent vie4 ,e.inition/  . =o se a,,itional so.t4are that -ight not e e$tensivel= teste, an, sorte, = a ven,or @.or e$a-le the E$tra Pa')ages .or Enterrise *in$ @EPE*B reositoriesB 4e re'o--en, that =o use include filters to provide onl- t#e packages -ou need for =or s=ste-s instea, o. all o. the reositories/ @ Aote: Io also nee, to in'l,e the ,een,en'ies o. these a')ages/B Io 4ill .in, an e$a-le .or this s'enario in 'hater 4ontent $iew for git Server Profile/

Recommendations for Content Views  Content vie4s 'an 'onsist o. an- com*ination of an- content t-pe Satellite 'an -anage in'l,ing: d RP so.t4are a')ages d Errata d Pet -o,les d Do')er 'ontainer i-ages


&9

www%red#at%com

Even i. =o 'an 'reate a ,e,i'ate, 'ontent vie4 .or ea'h in,ivi,al reositor= or 'ontent t=e 4e re'o--en, that =o n,le together as -an= reositories as ossile to re,'e the total n-er o. 'ontent vie4s @nless these 'ontent t=es have 4i,el= ,ivergent release '='lesB/ See the Pet e$a-le in Scenario 4C Host Specific 4omposite 4ontent $iews /  (he onl= 'ontent t=e 4hi'h shol, not e art o. a 'ontent vie4 are kickstart trees / All )i')start tree reositories have MLi')start in'l,e, in their lael .or e$a-le MRe, at Enterrise *in$ 6 Server !ickstart $"66 6/5/ (hese a')ages are onl= .or host rovisioning an, must not *e included in content views and composite content views/  Content vie4s also 'an contain multiple RHE2 versions and arc#itecture repositories/ #or e$a-le one C; 'an 'ontain RE* 6 !2it + RE* 6 6it + RE* 7 6it/ Using -ltile RE* versions an, ar'hite'tres signi.i'antl= re,'es the n-ers o. 'ontent vie4s ese'iall= i. CC;s are se, @see elo4B/ Ss'rition -anager ato-ati'all= assigns the 'orreson,ing RE* -a?or version an, ar'hite'tre/ %n the other han, this increases t#e num*er of packages insi,e the 'ontent vie4 ese'iall= in large vol-e reositories li)e Re, at Enterrise *in$ 4ith several thosan,s a')ages insi,e/ (his has an a,,itional impact on all content view related operations li)e 'ontent vie4 lishing an, ro-oting/

Recommendations for Composite Content Views (CCV) Io 'an n,le -ltile 'ontent vie4s together as a composite content view%  &e'ase o. the 'rrent reGire-ent o. a onetoone relationshi et4een a host @groB an, 'ontent vie4  'o-osite 'ontent vie4 =o must use composite content views if -ou #ave independent content views wit# independent owners#ip and release c-cles /  %nl= a CC; 'an ,e.ine the .inal 'ontent that is -a,e availale to target s=ste-s// e re'o--en, that =o 'reate CC;s onl= .or the a'tall= relevant 'o-inations o. C;s/ Do not 'reate CC;s .or all ossile 'o-inations o. 'ontent vie4s/

@arning, All t=i'al configuration options of a content view li)e reositories .ilters Pet -o,les 'ontainer i-ages are not availa*le as configura*le option in a composite content view / A 'o-osite 'ontent vie4 ?st 'o-ines t4o or -ore 'ontent vie4s together/ All these 'on.igration otions have to e set insi,e the n,erl=ing 'ontent vie4 ,e.initions/

Multiple Snapshots (Clones) of Content Views "dvantages

www%red#at%com

&=


Io 'an se 'ontent vie4s to provide multiple snaps#ots of t#e same repositor- at the sa-e ti-e/ Io 'an se the sa-e 'ontent sor'e reositories an, 'an 'reate ,i..erent snashots ase, on ,i..erent ti-esta-s an, .ilters o. the sa-e 'ontent set/ Io 'an also 'reate -ltile @.or instan'e Muarterl- snaps#otsC o. the sa-e 'ontent an, -a)e it availale to ,i..erent 'lients that reGire ,i..erent 'ontent sets/

Disadvantages Using 'ontent vie4s to rovi,e snashots in'reases the total num*er of content views / Io 'an se 'o-osite 'ontent vie4s to a'hieve the sa-e reslt/ a)e 'ontent vie4s o. ,i..erent ti-ease, snashots an, ?st sele't the 'orreson,ing version o. these 'ontent vie4s insi,e a CC;/ Io 'annot se this -etho, i. =o nee, ,i..erent .ilters sin'e =o 'annot al= .ilters at a CC; level/ o4ever i. =oOre sing 'ontent vie4s onl= as snashots .ilters are nne'essar=/

CCVs in a Dedicated Life-Cycle Environment Io 'an asso'iate a CC; 4ith a ,e,i'ate, li.e'='le environ-ent ath in,een,ent .ro- its internal 'ontent vie4s/ Using CC;s .or a 'ontent li.e '='le -ight -a)e ro-oting the 'ontaine, 'ontent vie4s throgh li.e'='le environ-ents osolete @see Step & .or ,etailsB/

Aotes,  A CC; is an a,,itional 'ontent vie4 to -aintain/ . =o -st -aintain a 'ontent vie4 4ithin a CC; =o -a= nee, to 'hange the CC; as 4ell/ As a reslt i. =o release the 'ontent vie4s 4ithin a CC; o.ten the CC; 4ol, also have to e ,ate, .reGentl=/  Satellite 6 ,oes not li-it 4hi'h arti'lar C; version is se, insi,e a CC;/ A 44$ does not enforce using t#e most current 4$ version 4ithin a arti'lar li.e'='le stage an, 'ol, even 'ontain versions that have not asse, a test or A stage an,or are 'rrentl= onl= in the *irar=/

How Content Views work with Products and Repositories A ro,'t @an, its reositoriesB 'an e art o. one or -ore 'ontent vie4s/ Io 'an also 'reate multiple content views wit# t#e same content @ro,'ts an, reositoriesB in arallel/ (his .eatre is hel.l i. =o nee, ,i..erent 'ontent snashots or 4ant to se ,i..erent .ilters @.or e$a-le ti-ease, .iltersB ese'iall= i. one o. the 'ontent vie4s -st not 'ontain a arti'lar a')age @e$'l,e .ilterB/ Io cannot use t#e same repositor- more t#an once inside a composite content view / #or e$a-le i. =o se the sa-e reositor= to n,le t4o 'ontent vie4s =o 'annot t oth 'ontent vie4s into a single CC;/


&&

www%red#at%com

Operating)S-stem OSC content (o searate %S 'ontent .ro- ali'ation 'ontent =o -st ensre that the OS)relevant content repositories @in'l,ing RE* ase an, 'hil, 'hannels as 4ell as )i')start treesB are part of onl- t#e OS Q 4ore Build 4$ an, not art o. an= other @ali'ationB C;/

Red Hat Software 4ollections RHS42C RSC* rovi,e ne4er versions o. 'o--on so.t4are a')ages that 'ol, e installe, in arallel to the ,e.alt @ol,erB versions that are art o. the relevant RE* version/ . =or ali'ation reGires RSC* =o shol,:  Eit#er ,e.ine the- as art o. the Core&il, @then the= 4ill e availale to all ali'ationsB  Or @recommended B =o 'an a,, the 'orre't reositor= to ea'h ali'ation 'ontent vie4 that reGires RSC* so.t4are a')ages/ Io 'annot ,o oth/

Puppet .odules Io cannot use t#e same Puppet module more t#an once inside a 44$ @.or e$a-le i. =o have a ,alrose -o,le li)e the one 4e are sing .or or rs=slog 'on.igration @see Step 9B/ Althogh 4e 'an a,, the Pet -o,le bloghostO to or 'ore il, 'ontent vie4 an, a,, it to the ali'ationse'i.i' 'ontent vie4 .or loghosts @'vars=slogB 4e 'annot asse-le oth 'ontent vie4s together .or or rolese'i.i' CC; @''vin.raloghostB e'ase o. this li-itation 4ith Pet/ e shol, re-ove the -o,le .ro- the ali'ationse'i.i' -o,le an, instea, se the 'ore il, 'ontent vie4/ #or -ore ,etails see 'hater Sample "pplication 5, 4entral log#ost Server 4here 4e 'reate an, se this -o,le an, 'ontent vie4s/

@arning, . =o -st se the same repositor- more t#an once wit# different filters and inside different content views deplo-ed to a particular s-stem B = sing CC;s =o -a= nee, to ,li'ate the reositor=/

How 3#ese Repositor- 2imitations Relate to Our Solution 7uide E?ample n or soltion gi,e e$a-le 4e originall= 4ante, to se a')ages .ro- EPE* reositories 4ithin ,i..erent la=ers o. or ali'ation ar'hite'tre/ e 4ante, to se the nagioslgins 4ithin EPE* as art o. the 'ore il, an, or,Press .or or ACE 4esite ali'ation/ At the sa-e ti-e 4e ,i, not 4ant to -a)e the entire EPE* reositor= availale to all or hosts an, to have to se .ilters/ Althogh 4e 4ere ale to t4o ,i..erent 'ontent vie4s 'ontaining the

www%red#at%com

100


EPE* reositor= an, se ,i..erent .ilters .or ea'h o. the- 4e 4ere not ale to 'reate a Co-osite 'ontent vie4 o. oth e'ase o. the reositor= 'on.li't/ &asi'all= 4e ha, three otions to a'hieve or goal:

Option 1% a)e the entire EPE* reositor= availale to all hosts @reGire, sin'e 4e se it as art o. the 'ore il,B t se t4o .ilters .or the Nagios an, or,Press a')ages/ n this s'enario 4e 4ol, have to a,, a thir, .ilter i. an= other ali'ation rnning on to o. the 'ore il, reGire, an a,,itional a')age 4ithin the EPE* reositor=/ (his otion 4ol, also reGire s to ,ate lish an, ro-ote or 'ore il, 'ontent vie4 ea'h ti-e 4e intro,'e a ne4 ali'ation an, 4ol, in'rease or -aintenan'e e..orts/ Option '% a)e the entire EPE* reositor= availale to all hosts @reGire, sin'e 4e se it as art o. the 'ore il,B 4ithot sing .ilters/ (his aroa'h 4ol, avoi, the a,,itional -aintenan'e e..orts ,es'rie, in %tion 1/ Sin'e the 'ontent vie4 ,e.ines onl= the 'ontent availailit= an, not the ,elo=-ent ,e.inition the a,,itional @eventall= n,esiraleB a')ages are availale to all s=ste-s t not ,elo=e,/ Io shol, ,e'i,e et4een otions 1 an, 2 = loo)ing at 'rrent ris) evalations/ Option 5% Create -anall= a ,e,i'ate, reositor= an, se the hammer repository upload-content 'o--an, @see Step 5 Sitation 2 .or an e$a-leB to sh onl= the reGire, a')ages @in'l,ing ,een,en'iesB into this reositor=/ (his nee,s to e ,one ea'h ti-e the strea- reositor= 'ontent 4ill e ,ate,/ Option 8% Dli'ate the entire EPE* reositor= an, se these ,i..erent reositories insi,e the ,i..erent 'ontent vie4s = sing ,i..erent .ilters/ No4 that 4e have -ove, to sing Jai$ .or -onitoring or hosts this arti'lar 'hallenge has ,isaeare, an, 4e ,o not nee, to s=n' the EPE* reositor= t4i'e/ o4ever 4eOve intentionall= le.t this in.or-ation in this ,o'-ent in 'ase =o are .a'ing a si-ilar 'hallenge/

Puppet and 4ontent $iews (he 'on.igration .iles that are -anage, 4ith Pet 'an either e art o. the so.t4are.o'se, 'ontent vie4 or searate, .ro- it/ So-e 'sto-ers re.er separating t#e Puppet configuration from t#e software content management e'ase o. the ,i..erent  shorter release '='les or other reasons/ Io 'an also 'o-ine -ltile so.t4are.o'se, 'ontent vie4s @.or e$a-le one .or the 'ore il, an, another .or the ali'ation serverB 4ith one aggregate, Pet.o'se, 'ontent vie4/ (his C; 'an 'onsist o. a 'on.igration .or oth sta') la=ers @ n,1 relation of software,config B/


101

www%red#at%com

Aote, . =o ,onOt -anage =or Pet 'on.igration insi,e a ,e,i'ate, 'ontent vie4 eac# Puppet module c#ange automaticall- causes a software c#ange at t#e same time if t#e software repositories #ave c#anged since t#e last update / . 4e -anage the Pet 'on.igration = sing a Satellite 6 'ontent vie4 an, the li.e'='le -anage-ent .eatre @an, not = sing 'sto- Pet environ-entsB 4e -st lish an, ro-ote a ne4 version o. the aroriate 'ontent vie4s that 'ontain the ne4 or a,ate, Pet -o,les/ Even i. =o ,onOt se stati' ,ate .ilters .or all so.t4are reositories insi,e a arti'lar 'ontent vie4 the so.t4are 'ontent in the *irar= is ato-ati'all= a,,e, to this 'ontent vie4 4hile lishing/ . the 4a= =o have i-le-ente, =or arti'lar 'hange an, release -anage-ent ro'ess reGires =o to -anage in,een,ent 'on.igration 'hanges 4ithot si-ltaneosl= so.t4are 'hanges the est otion is to se ,e,i'ate, 'ontent vie4s .or Pet 'on.igration/ Io shol, tr= not to slit the so.t4are an, 'on.igration into searate 'ontent vie4s/ (his ra'ti'e in'reases the n-er an, 'o-le$it= o. 'ontent vie4s an, 'an lea, to M 4$ sprawl/ n this soltion gi,e 4e are not sing ,e,i'ate, 'ontent vie4s .or Pet 'on.igration/ e -a,e this ,e'ision ase, on ris) esti-ation throgh sing the li.e'='le -anage-ent to test 'hanges e.ore al=ing the- to ro,'tion s=ste-s/ Stalle, so.t4are 'hanges 4ol, onl= ostone the otential role-s an, not solve the-/

How 4ontent $iews "re >pdated Content vie4s are sose, to e 'ontinosl= ,ate, i. ne4er 'ontent is availale in the aroriate reositories @an, s=n'e, to the *irar= sing s=n' lansB/ Crrentl= onl- t#e most current version o. ea'h 'ontent vie4 is availale 4ithin a arti'lar stage/ Io 'annot se .or-er versions o. a 'ontent vie4 4ithin a arti'lar li.e'='le stage/ hen the 'ontent insi,e a C; is ,ate, the version n-er is also in're-ente, @this .eatre rovi,es in#erent version control of content views B/ &eginning 4ith version 6/1 o. Satellite =o 'an ,ate the 'ontent in're-entall=/ See Ste 9 >se 4ase 8C /ncremental >pdates ) "ppl- Selected Errata to Hosts .or .rther ,etails/ &e'ase o. the availailit= o. onl= the -ost 'rrent version =o -ight have s'enarios in 4hi'h it -a)es sense to 'o= a 'ontent vie4 an, allo4 .or multiple versions of t#e same content view in arallel 4ithin the sa-e li.e'='le stage/ So-e 'sto-ers are 'reating -onthl= or Garterl= snashots o. 'ontent @.or e$a-le .or Re, at Enterrise *in$ @RE*BB to o..er -ltile ,ate levels o. RE* in arallel/ #or e$a-le

www%red#at%com

10'


the= nee, the -ost re'ent version o. RE* .or .ronten, servers t an ol,@erB version .or so-e lega'= ali'ations/ (o avoi, C; sra4l =o shol, se this aroa'h onl= 4hen asoltel= ne'essar=/ Crrentl= 'ontent vie4s -ove unc#anged throgh the ,e.ine, li.e'='le environ-ents/ So-eti-es li.e'='lese'i.i' a,atations are reGire,/ #or instan'e =o -a= nee, to install a,,itional ,egging a')ages or se ,i..erent ,egging or logging 'on.igrations in Dev or A/ Io -st -a)e life)c-cle)environment)specific c#anges insi,e the Pet 'on.igration to ensre that 'ontent vie4s re-ain 'onsistent in all li.e'='le stages/ As -entione, earlier Satellite 6 ,oes not li-it 4hi'h arti'lar C; version is se, insi,e a CC;/ A CC; ,oes not en.or'e sing the -ost 'rrent C; version 4ithin a arti'lar li.e'='le stage an, 'ol, even 'ontain versions that have not asse, a test or A stage an,or are 'rrentl= onl= in the *irar=/ e also re'o--en, that =o delete an- content view versions t#at #ave not successfull- passed a particular test or " stage / (his re'ation revents these C;s eing sele'te, as art o. a CC; in ro,'tion/ Reositories insi,e a 'ontent vie4 ,isla= as =- reositories to Re,atSatellite-anage, 'lients/ Crrentl= =o 'annot se the =-riorities lgin to or,er or rioritie the-/ (here.ore 4e re'o--en, that =o ,o N%( asso'iate -ltile reositories that 'ontain si-ilar so.t4are a')ages 4ith -ltile versions o. a 'ontent vie4/ (his role- is not li)el= to o''r 4ith Re, at so.t4are reositories t it -ight haen 4ith thir,art= so.t4are reositories/ Io still 'an ,e.ine se'i.i' a')age versions as art o. Pet 'on.igration t this nee,s to 'ontinosl= ,ate,/

Content 6ie% aming Con'entions &e'ase 'ontent vie4s are a 'entral ite- o. Re, at Satellite 6 4e re'o--en, that =o se a na-ing 'onvention .or =or 'ontent vie4s that allo4s ato-ation @to e intro,'e, laterB/ #or instan'e the rolease, a''ess 'ontrol -o,el e$laine, in Step = is ase, on these na-ing 'onventions/ "ppendi? ///, Aaming 4onvention rovi,es an overvie4 o. all na-ing 'onventions se, in this soltion gi,e/

Basic Guidelines for Naming Conventions  (he arti'lar RE* version is not art o. or na-ing 'onventions/ hen 'reating 'ontent vie4s 4e tr= to 'reate C;s in,een,ent o. RE* releases/ @. =o 4ant to 'reate %Sse'i.i' 'ontent vie4s a,, an a,,itional seg-ent that ,e.ines the %S version/B  . =o ,o not se'i.= a version or release the 'ontent vie4 is sose, to e


105

www%red#at%com

'ontinosl= ,ate,/ . =o nee, to rovi,e -ltile versions o. the 'ontent in arallel a,, a se'i.i' version or release tag/

Content Views Versus Composite Content Views hen na-ing 'o-onentsro.iles @ase, on C;sB an, .inal ,elo=-ent 'on.igrationsroles @ase, on CC;sB 4e a,, a string to ,istingish et4een the t4o/ (he na-e 4ill then egin 4ith either: C; or CC;

How to Name Components/Profles (based on CVs) Use this tale to ,istingish et4een the ,i..erent t=es o. 'o-onentsro.iles/ /f we are naming % % %

3#en we use t#is string in t#e name % % %

%erating s=ste-s @'ore il,B

os

Ali'ations rnning on to o. the oerating s=ste-

a

(hese na-ing 'onvention lea, to the .ollo4ing s'he-a: 'v  _ osa `  _ ro.ile na-e ` Y  _ version or release ` [

How to name Final Deployment Configurations/Roles (based on CCVs) Use this tale to ,istingish et4een the ,i..erent t=es o. ,elo=-ent 'on.igrationsroles/ /f we are naming % % %

3#en we use t#is string in t#e name % % %

&siness ali'ations

i

n.rastr'tre Servi'es

in.ra

All roles that 4ill e 'on.igre, as 'o-osite 'ontent vie4s se the .ollo4ing s'he-a: ''v  _ iin.ra `  _ role na-e ` Y  _ version or release ` [

Aote, (he sa-e string se, in 'o-osite 'ontent vie4s .or role na-e is se, as the host gro na-e in Step 9/

www%red#at%com

108


Ty&ica" "i!ecyc"e stages ost ( organiations ,ivi,e the li.e'='le stages o. oerating s=ste-s an, ali'ations into ! stages: 1/ Dev .or stage Develo-ent 2/ " .or stage (est K alit= Assran'e !/ Prod .or stage Pro,'tion So-e organiations -a= se Plan  &il,  Rn instea, or have -ore than ?st three stages @E$a-le: Dev  (est  UA(  N(  Pro,B/ (his soltion gi,e .o'ses on so-e 'o--on s'enarios starting 4ith a si-le set an, 'ontining 4ith so-e t=i'al enhan'e-ents/ See Ste 9 @RE#B .or e$a-les o. ho4 to se these li.e'='le environ-ents in 'on?n'tion 4ith so-e 'ontent @vie4B li.e'='le s'enarios/ Step ( an, Step 6 sho4 ho4 to 'reate the relate, 'ontent vie4s an, 'o-osite 'ontent vie4s/

Red Hat Sate""ite "i!ecyc"e En'ironments (he ali'ation li.e'='le is ,ivi,e, into lifecycle enironments 4hi'h -i-i' ea'h stage o. the li.e'='le/ (hese li.e'='le environ-ents are lin)e, in an enironment path/ Io 'an ro-ote 'ontent along the environ-ent ath to the ne$t li.e'='le stage 4hen reGire,/ #or e$a-le i. ,evelo-ent 'o-letes on a arti'lar version o. an ali'ation =o 'an ro-ote this version to the testing environ-ent an, start ,evelo-ent on the ne$t version/

The S&ecia" Ro"e o! the #ibrary (he *irar= is a iltin stage o. Re, at/ All 'ontent that is s=n'hronie, into Satellite -anall= or erio,i'all= sing s=n' lans is store, insi,e the *irar=/ (here.ore the *irar= is si-ilar to (*

10(

www%red#at%com

The S&ecia" Ro"e o! the RHE# Core 7ui"d Usall= so.t4are li.e'='le -anage-ent .o'ses on a siness erse'tive that is ri-aril= a to,o4n vie4 loo)ing .ro- the tolevel ali'ation ,o4n4ar,s to the n,erl=ing 'o-onents @.or e$a-le ali'ation lat.or- oerating s=ste- an, in.rastr'treB/ (=i'all= a 'ore il, is the s-allest 'o--on ,eno-inator .or all or a arti'lar sset o. =or Re, at Enterrise *in$ S=ste-s/ #or .rther in.or-ation see also the ,etaile, in.or-ation in Step (, Define -our 4ore Build / (he 'ore il, itsel. has a se'ial role in the li.e'='le-anage-ent area/ #ro- the erse'tive o. the tea- 4ho -aintains the Core &il, ever= stage otsi,e o. their o4n @laB environ-ent is Mro,'tion = ,e.inition/ Even the stages 'alle, M,ev or MGa are @.ro- an ( %s erse'tiveB Mro, stages in,een,ent o. their ali'ation'entri' laels/ e ,eal 4ith this e$'etion in a n-er o. 4a=s in'l,ing:  ( %s ses the 2i*rar- Stage itsel. .or their initial testing o. a 'ore il,/ . 4e ass-e that this initial testing ,oesnOt ta)e too long the ris) o. 'hange, 'ontent ,ring these tests -ight e a''etale/  ( %s ses a dedicated pre)stage at the stage ne$t to *irar= t e.ore the ali'ation'entri' stage .or all or -ost o. the li.e'='le environ-ent aths @.or e$a-le *irar= ` Ops 3est ` Dev ` A ` Pro,B/  ( %s ses a dedicated life)c-cle environment pat# to il, an, test the 'ore il,/ (his li.e'='le environ-ent ath -ight e se, = other ali'ations or in.rastr'tre servi'es o4ne, = ( %s as 4ell/ &e'ase 4eOre sing at least one ,e,i'ate, li.e'='le environ-ent ath .or or siness ali'ation 4eOre sing the thir, otion insi,e this soltion gi,e/

#i!ecyc"e S&eci!ic Ada&tations Satellite 6 .ollo4s the rin'ile o. content consistenc- across environments / (his -eans that 'ontent .lo4s unc#anged throgh the ,e.ine, li.e'='le environ-ents sing 'ontent vie4s/ Nevertheless in so-e 'sto-er s'enarios li.e'='le se'i.i' a,atations are reGire, @.or instan'e the a,,itional installation o. ,egging a')ages or ,i..erent ,eg or logging 'on.igration in Dev or AB/ (hese 'hanges 'ol, e han,le, insi,e the Pet 'on.igration that is art o. the 'ontent @vie4sB .lo4ing throgh the li.e'='le environ-ents/

www%red#at%com

106


Ty&ica" #i!ecyc"e En'ironment Scenarios (he .ollo4ing 'hater elaorates so-e 'o--on s'enarios .or sing Re, at Satellite li.e'='le Environ-ents/ (he .or -ost 'o--on s'enarios are ,es'rie, elo4:

Scenario A) One lifecycle stage for everything (he set 4ith the lo4est 'o-le$it= ,oes not se the li.e'='le environ-ent/ All 'ontent is s=n'hronie, 4ith the *irar= an, all s=ste-s are ss'rie, to the *irar=Os environ-ent ,ire'tl=/ Sin'e this ,oes not allo4 .or an= testing @all 'hanges -a,e in the *irar= are ato-ati'all= alie, to all s=ste-s ,ring the erio,i' rn o. Pet the agentB 4e ass-e that this s'enario is not oti-al/ Nevertheless s-all or si-le sets that ,o not reGire se'i.i' li.e'='le -anage-ent -ight e ale to se this s'enario/ (o ensre at least one ,e,i'ate, transition o. ne4 'ontent to =or ro,'tion s=ste-s the -ost si-le t still reasonale set is to ,e.ine one li.e'='le environ-ent ath 4ith onl= one stage/ Content -ight e ro-ote, .ro- *irar= to this single li.e'='le stage on a reglar asis/ (esting is ,one insi,e the *irar=/ *etOs lael this stage Mgeneri'/

7uidelines for Scenario "  Ensre that the 'ontent @so.t4are an, 'on.igrationB =oOre testing 4ithin the *irar= stage is the sa-e as the one =oOre ,elo=ing to =or s=ste-s elonging to the generi' stage/  Ensre that the *irar= 'ontent 4onOt 'hange et4een testing an, ro-otion/  Che') =or s=n' lans to ,eter-ine 4hat s'he,les are se, to ,ate the 'ontent i. the rovi,er reositor= has 'hange,/ refarc#)feed*ack+red#at%com

109

www%red#at%com

(o 'reate a li.e'='le environ-ent: 1/ Cli') on Content ` *i.e'='le Environ-ents ` Ne4 Environ-ent Path 2/ (=e in a na-e lael an, ,es'rition/ !/ Cli') the Save tton/ (he .ollo4ing ha--er C* 'o--an,s 'reates a ne4 li.e'='le environ-ent ath that 'ontains ?st the single generi' stage: ha--er li.e'='leenviron-ent 'reate na-eHeneri'H X riorH*irar=H X organiationACE

"dvantages and Disadvantages  (his s'enario lets =o avoi, the a,,itional 'o-le$it= an, e..ort o. li.e'='le -anage-ent/  . =o ,onOt have a ,e,i'ate, so.t4are ,evelo-ent environ-ent an, =o have li-ite, or no internal A 'aailities this s'enario 4ol, let =o ,elo= so.t4are to =or s=ste-s 4ithot testing a great ,eal e.orehan,/ (his aroa'h -ight e ese'iall= relevant .or ( organiations .o'se, on resilien'= @.ast -ean ti-e to resoltionB instea, o. rostness @e$tensive testing e.ore ,elo=ing it to ro,'tionB/ n a resilien'=.o'se, environ-ent a,,itional li.e'=le stages 4ol, slo4 ,o4n the sh o. the resoltion throgh the @nne'essar=B a,,itional stages/

Scenario B) One Lifecycle Environment Path for All Apps and OS (his s'enario leverages the 'ontent ro-otion 'aailities o. Satellite 6 t it ,oes not -a)e a ,istin'tion et4een ,i..erent ali'ations an, oerating s=ste-s -anage, = Re, at Satellite/ (his -eans that all @'o-ositeB 'ontent vie4s @ass-ing 4e still ,ivi,e the %S an, ali'ations sing ,i..erent 'ontent vie4sB are sing the sa-e 'ontent ro-otion ath/ %r soltion gi,e ses these three stages: 1/ Dev .or stage Develo-ent 2/ " .or stage (est K alit= Assran'e !/ Prod .or stage Pro,'tion (he .ollo4ing ha--er C* 'o--an,s 'reates the ne4 ro-otion ath an, in'l,es these three environ-ents: ha--er li.e'='leenviron-ent 'reate organiation 3ACE3 na-e 3DE;3 ,es'rition

www%red#at%com

10=


3,evelo-ent3 rior 3*irar=3 ha--er li.e'='leenviron-ent 'reate organiation 3ACE3 na-e 3A3 ,es'rition 3alit= Assran'e3 rior 3DE;3 ha--er li.e'='leenviron-ent 'reate organiation 3ACE3 na-e 3PR%D3 ,es'rition 3Pro,'tion3 rior 3A3

. =o 'li') on Content ` *i.e'='le Environ-ents =o shol, see this vie4:

n this s'enario all 'ontent vie4s se the sa-e li.e'='le environ-ents an, are ro-ote, throgh the-/ (his s'enario still allo4s .or in,een,ent release '='les .or ,i..erent %S versions or ali'ations e'ase ro-otion is ,one on an in,ivi,al C; level/ #or instan'e =o 'an ro-ote the 'ontent vie4 .or RE*6 to A or Pro, -ore .reGentl= than =o ,o the ali'ation server @an, )ee its ol, versionB an, vi'e versa/

"dvantages and disadvantages (his s'enario ,ivi,es or so.t4are release '='le into ,i..erent stages that are -ae, to ,e,i'ate, 'o-te environ-ents @serversB an, are 'learl= ,istingishe, .ro- ea'h other/ Usall= 4e have 'learl= ,e.ine, transition or han,over ro'e,res et4een these stages as art o. the Change or Release anage-ent ro'ess ,e.inition/ Satellite 6 li.e'='le environ-ents 4ol, re.le't these ro'ess stes insi,e the s=ste-s -anage-ent in.rastr'tre/ (he ri-ar= goal .or this li.e'='le -anage-ent aroa'h is to avoi, isses that a..e't =or ro,'tion s=ste-s = testing e$tensivel= e.orehan,/ (he 4i,er the test 'overage is the lo4er the ris) o. the re-aining isses even =o ,o not have 100F 'overage o. otential


10&

www%red#at%com

,i..i'lties/ %ne ,isa,vantages is that s'h a reglate, ro'ess reGires e$tra e..ort/ n a,,ition the Dev an, A environ-ent reGire a,,itional resor'es/ &esi,es the 'o-te resor'es reGire, .or these a,,itional environ-ents an, the h-an an, te'hnologi'al e..orts ne'essar= to estalish an e..i'ient A s'enario are large an, reGire a signi.i'ant invest-ent in test ato-ation/ n a resilien'=.o'se, ( organiation ,elo=ing ne4er versions o. so.t4are an, 'on.igration ver= .reGentl= having to sh throgh these a,,itional stages -ight slo4 ,o4n i-le-entation/

Scenario C) dedicated lifecycle path for particular applications n the t=i'al s'enario ,es'rie, aove 4eOve onl= ha, one single 'ontent ro-otion ath .or all oerating s=ste-s an, ali'ations/ n -an= 'sto-er environ-ents this -ight e not s..i'ient ,e to a,,itional reGire-ents as liste, elo4:  reGire-ent .or having segregate, release ielines .or @se'i.i'B ali'ations to allo4 in,een,ent release '='les .or arti'lar ali'ations  ,e,i'ate, o4ner @sall= the ali'ation o4nerB 4ho ,e.ines 4hi'h arti'lar 'o-ination o. %S @Core &il,B an, ali'ation is se, in ea'h stage  ,e,i'ate, 'o-te environ-ents @h=si'al or virtalB o4ne, = these ,e,i'ate, o4ners to e$e'te se'i.i' tests or to ,ivi,e ro,'tion o4nershi as 4ell

Aote, (he na-e an, lael o. ea'h li.e'='le environ-ent -st e niGe 4ithin one t not a'ross -ltile organiations/ n or soltion gi,e 4eOre a,,ing a re.i$ .or ea'h ali'ation t=e 4hi'h o4ns a ,e,i'ate, li.e'='le environ-ent ath/ #rther ,etails =o 'an .in, in the na-ing 'onvention e$laine, in "ppendi? ///, Aaming 4onvention/ "dvantages and disadvantages (he a,vantage o. this s'enario is the a,,itional ,egree o. .ree,o- .or arti'lar ali'ations to 4or) in in,ivi,al li.e'='le environ-ents an, release '='les/ t also allo4s to ,e.ine -ore .ine granlar a''ess level .or in,ivi,al sers an, roles ase, on .ilters @see Step =B/ (he ,isa,vantage is the in'rease, level o. 'o-le$it= to -aintain these li.e'='le environ-ent aths an, the a,,itional .lo4s o. 'ontent @vie4sB a'ross these a,,itional stages/

www%red#at%com

110


Scenario D) Deviant Lifecycle Paths Require an Overall Mapping So-e 'sto-er environ-ents have a,,itional reGire-ents in ter-s o. the li.e'='le environ-ent aths/ (hese ,eviant li.e'='le environ-ents 'ol, have a ,i..erent n-er o. stages or the stages -a= e e s,ivi,e, @.or e$a-le a ,e,i'ate, ser a''etan'e testing @UA(B stage .or so-e t not .or all stages or no stage ,ev .or C%(S ali'ationsB/

"dvantages and disadvantages disadvantages (his s'enario -a= etter re.le't a 'o-an=Os nee,s .or reGire, li.e'='le stages aroriate 'o-te environ-ents or in,ivi,al ali'ations/ (his s'enario -ight 4or) est .or 'sto-ers 4ho have an internal internal so.t4are so.t4are ,evelo-ent ,evelo-ent ,eart-ent ,eart-ent t also se so-e C%(S ali'ations that ,o not reGire se'i.i' test stages/ (hese 'sto-ers -ight ene.it .ro,e.ining the oti-al n-er o. li.e'='le stages .or ea'h in,ivi,al ali'ation/ Crrentl= ho4ever Satellite 6 ,oes not rovi,e overall groing or -aing o. so-e stages an, their relationshis/ n .a't the li.e'='le environ-ent aths are 'o-letel= in,een,ent o. ea'h other/ (o have a se'i.i' .lo4 throgh the ,evelo-ent stages -ou must #ave -our own regulated formal process outside of Satellite 6% (he ACE s'enario in the ne$t se'tion ,es'ries otential .lo4s to .ollo4/

ACME Scenario %r ACE organiation has these relevant reGire-ents:  %r in,ivi,al in,ivi,al ali'ation ali'ation o4ners o4ners @o. @o. siness siness ali'ationsB ali'ationsB reGire reGire a ,e,i'ate, ,e,i'ate, release ieline in,een,ent o. or 'ore il, an, other in.rastr'tre servi'es -anage, = the ACE ( %erations tea-/ @see also 'hater "4.E /3 Organiation Overview B  (hese in,ivi,al in,ivi,al ali'ation ali'ation o4ners are resonsi resonsile le .or ,e'i,ing 4hi'h 'o-inatio 'o-ination n o. 'rrent an, .or-er 'ore il, releases are n,le, together 4ith 'rrent or .or-er ali'ation releases @sing the 'o-osite 'ontent vie4 .eatre o. Satellite 6B/ @e 4ill ( Step 6 an, the 'orreson,ing roles in Step =/B 'over this in Step (  in a,,ition a,,ition to to generi' generi' DevAPro DevAPro, , stages stages or or siness siness ali'ations ali'ations reGire reGire a ,e,i'ate, UA( stage/


111


(he ACE *i.e'='le Environ-ent %vervie4 loo)s li)e this:

e se the .ollo4ing 'o--an,s to 'reate these li.e'='le environ-ent aths:  'reate the generi' li.e'='le env ath ha--er li.e'='leenviron-ent 'reate organiation 3%R3 na-e 3DE;3 ,es'rition 3,evelo-ent3 3,evelo-ent3 rior 3*irar=3 ha--er li.e'='leenviron-ent 'reate organiation 3%R3 na-e 3A3 ,es'rition 3alit= Assran'e3 rior 3DE;3 ha--er li.e'='leenviron-ent 'reate organiation 3%R3 na-e 3PR%D3 ,es'rition 3Pro,'tion3 rior 3A3  'reate the ,e,i'ate, li.e'='le env ath .or a'-e4e ha--er li.e'='leenviron-ent 'reate organiation 3%R3 na-e 3eDE;3 ,es'rition 3,evelo-ent3 rior 3*irar=3 ha--er li.e'='leenviron-ent 'reate organiation 3%R3 na-e 3eA3 ,es'rition 3alit= Assran'e3 Assran'e3 rior 3eDE;3 3eDE;3 ha--er li.e'='leenviron-ent 'reate organiation 3%R3 na-e 3eUA(3 ,es'rition 3Pro,'tion3 rior 3eA3 ha--er li.e'='leenviron-ent 'reate organiation 3%R3 na-e 3ePR%D3 ,es'rition 3Pro,'tion3 rior 3eUA(3


11'


Step 5: Define your Core Build A )e= goal o. setting  a Stan,ar, %erating Environ-ent is to in'rease the stan,ar,iation in all the ,i..erent sta') la=ers o. an ali'ation ar'hite'tre/ (he sta') la=er 4ith the 4i,est sage is the n,erl=ing oerating s=ste-/ (he core *uild is the strea-line, stan,ar,ie, Re, at Enterrise *in$ 'on.igration/

7ene!its o! Red Hat Enter&rise #inu0 !or Core 7ui"ds A )e= goal o. setting  a Stan,ar, %erating Environ-ent is to in'rease the stan,ar,iation in all the ,i..erent sta') la=ers o. an ali'ation ar'hite'tre/ (he sta') la=er 4ith the 4i,est sage is the n,erl=ing oerating s=ste-/ (he 'ore il, is the strea-line, stan,ar,ie, Re, at Enterrise *in$ 'on.igration/ (here are a 'ole o. ene.its o. sing Re, at Enterrise *in$ as the oerating s=ste- stan,ar, in an enterrise environ-ent/ Re, at Enterrise *in$ sets the stan,ar, an, rovi,es the est set o. .eatres .or stan,ar,iation/

Sta*ilit- and support Enterrise ali'ations an, servi'es reGire a stale .on,ation 4ith a ,e.ine, li.e'='le/ Re, at Enterrise *in$ .eatres a 10=ear li.e'='le 4ith ongoing sort an, ,ates .rolan'h to retire-ent/

Securit&e'ase a se'rit= isse in a stan,ar,ie, oerating s=ste- 4ill a..e't the entire environ-ent it is 'riti'al that an= se'rit= isses are -itigate, Gi')l=/ Re, at .i$es 95F o. all 'riti'al se'rit= isses in Re, at Enterrise *in$ 4ithin 2 hors/

Relia*ilitA''or,ing to an DC st,= 'o-anies that stan,ar,ie, on Re, at Enterrise *in$ e$erien'e signi.i'antl= less ,o4nti-e than those oerating -i$e, or ri-aril= nonai, *in$ ,istritions ,e to etter -anage-ent ra'ti'es an, regression testing = oth Re, at an, its artner 'o--nit=/ #rther ,etails 'an e .on, here: htt ht t : : 444 44 4/re /re,ha ,hatt /'o /' o-  ro ro-o -o s sta tan, n,ar ar,i ,ie e r rhs hs /h /htt-ll

OE. and /S$ certification Re, atOs large 4ellestalishe, %E an, S; 'o--nities ensre that 'sto-ers 'an e 'on.i,ent that re'ent har,4are innovations are sorte,/ (he= 'an 'hoose .ro- over 1000


115 11 5


'erti.ie, so.t4are o..erings to -eet their nee,s 4ithot 'o-ro-ising se'rit= reliailit= or sort/

"B/ and "P/ compati*ilitAli'ation stailit= is -aintaine, 4ith A& an, AP 'o-atiilit= et4een Re, at Enterrise *in$ version gra,es/ Ali'ations 4ritten .or a version o. Re, at Enterrise *in$ 4ill rn n-o,i.ie, on an= -inor release ntil the retire-ent o. the version/

Red Hat ABI and API compatibility commitment Dring the li.e '='le o. a -a?or release Re, at -a)es 'o--er'iall= reasonale e..orts to -aintain inar= 'o-atiilit= .or the 'ore rnti-e environ-ent a'ross all -inor releases an, errata a,visories/ . ne'essar= Re, at -a= -a)e e$'etions to this 'o-atiilit= goal .or 'riti'al i-a't se'rit= or other signi.i'ant isses/ #rther-ore -a?or releases o. Re, at Enterrise *in$ 'ontain a li-ite, set o. a')4ar,'o-atile liraries in'l,e, in revios -a?or releases to allo4 .or the eas= -igration o. ali'ations/ (=i'all= Re, at alies 'hanges in s'h a 4a= as to -ini-ie the a-ont o. 'hange an, to -aintain inar= 'o-atiilit=/ E$'etions -a= al= .or 'ontrolle, a')age reases n,er 'ertain 'ir'-stan'es/ Pa')ages in Re, at Enterrise *in$ are 'lassi.ie, n,er one o. .or 'o-atiilit= levels/ an= i-ortant rogra--ing langages an, rnti-es li)e =thon erl an, r= are art o. 'o-atiilit= levels 4hi'h -eans that their A&s an, APs are stale 4ithin one -a?or release o. Re, at Enterrise *in$/ #rther ,etails are rovi,e, insi,e Re, at Csto-er Portal: htt ht ts s: : a''ess a'' ess /re /re,ha ,hatt /'o /'o -a art rti' i'le les sr rhe hell   ai  'o'o-at atii iilit lit= = (his 'o-atiilit= 'o--it-ent signi.i'antl= re,'es the te'hni'al ris) o. al=ing 'hanges to the n,erl=ing oerating s=ste- .or the ali'ations rnning on to o. it/ A,,itionall= it ensres that .ro- an ali'ation erse'tive there is no ,i..eren'e i. the %S is rnning on are or on an= other sorte, virtaliation lat.or-/ &ase, on A&AP stailit= in -an= 'sto-er environ-ents 'hanges o. Re, at Enterrise *in$ so.t4are are ,e.ine, as (* @RB Stan,ar, Changes/ A Stan,ar, Change is a re,e.ine, an, reathorie, 'hange 4hi'h is 'onsi,ere, relativel= lo4 ris) or i-a't .ollo4s a ,o'-ente, ro'ess or ro'e,re an, t=i'all= er.or-e, .reGentl=/ (his allo4s -ore .reGentl= 'hanges 4ith lo4er ris) 4hile Re, at Satellite rovi,es the te'hnolog= to ,e.ine ,elo= -aintain an, veri.= these 'hanges over ti-e/


118


#rther in.or-ation aron, A&AP stailit= 'ol, e .on, here: htt ht ts s: : a''ess a'' ess /re /re,ha ,hatt /'o /'o -a art rti' i'le les sr rhe hell   ai  'o'o-at atii iilit lit= =

Core 7ui"d 'er'ie% %r goal is to a'hieve highest ossile stan,ar,iation o. the oerating s=ste- la=er/ (he 'ore il, shol, .l.ill these reGire-ents/ t shol,:         

Provi,e the s-allest s-allest 'o--on ,eno-inator ,eno-inator o. o. all Re, at at Enterrise Enterrise *in$ servers &e in.rast in.rastr't r'tre re @har, @har,4are 4are an, an, virtal virtaliat iationB ionB agno agnosti' sti' Provi,e Provi,e an ali'a ali'ation tion or lat.o lat.or-i r-in,e n,een, en,ent ent %S 'on.ig 'on.igrat ration ion &e a niver niversal sal sie sie that that allo4s allo4s s'ali s'aling ng  to to all the the sies sies se, se, &e ase ase, , on a -ini-ini-al al ins instal tallat lation ion Contain Contain a arti artition tioning ing s'he-a s'he-a an, ,e.a ,e.alt lt .iles=s .iles=stete- la=o la=ott Contain Contain all Re, Re, at thir, thir,art= art= an, an, 'sto'sto- so.t4are so.t4are reGir reGire, e, on all s=ste-s s=ste-s Contain Contain all all 'on.ig 'on.igrat ration ion settin settings gs reGire reGire, , on all all s=ste-s s=ste-s (=i'a =i'all= ll= in'l in'l, ,e e asi' asi' har,e har,eni ning ng

Core 7ui"d Recommendations (=i'all= a 'ore il, is 'reate, ,ring server rovisioning = sing )i')start te'hnolog=/ ost o. the 'ore il, 'hara'teristi's are there.ore 'reate, 4hile =o are ,e.ining =or rovisioning @,o'-ente, in the ne$t 'hater: Step 9, "utomate -our provisioningB/ (his se'tion .o'ses on the 'ontent ortions o. the 'ore il,/ (hese in'l,e the ali'ale 'ontent vie4s an, Pet -o,les/ (he .ollo4ing ,iagra- ,es'ries the relationshi et4een @asi'B rovisioning the 'ore il, an, the ali'ations rnning on to o. the 'ore il,:


11( 11 (


(he so.t4are an, 'on.igration ,elo=e, to =or target s=ste-s ,ring rovisioning are art o. the 'ore il,/ As a reslt the software and configuration set used during provisioning must *e smaller t#an t#e core *uild definition / e re'o--en, that =o se the smallest possi*le software and configuration set for provisioning an, the smallest common denominator of all s-stems to define t#e core *uild/ n or s'enario 4eOre sing the Core a')age gro insi,e the rovisioning te-late an, so-e sa-le Pet -o,les to install all a,,itional a')ages 4hi'h are art o. the 'ore il,/ . 4e e$ten, the a')age set later 4e ,o not nee, to rerovision or e$isting servers sin'e the Pet -o,le 4ill e alie, to all e$isting an, 'o-ing servers/ (he .inal 'ore il, 'on.igration in'l,ing all the ali'ale Pet -o,les are asso'iate, 4ith a dedicated config group/ (his 'on.ig gro 4ill e asso'iate, 4ith all 'orreson,ing host gros in Step 9/ Althogh provisioning t#e configuration does not #ave a life)c-cle management management 'o-onent the lifec-cle of t#e core *uild is -anage, sing the Satellite 6 content view lifec-cle management / #or -ore in.or-ation aot 'ontent vie4 li.e'='le -anage-ent see Step &/ (he 'ore il, rovi,es the .on,ation @oerating s=ste-B o. all =or Re, at Enterrise *in$ s=ste-s an, -ight also 'ontain a')ages  ,een,en'ies .or so-e o. the ali'ations rnning on to o. the 'ore il,/ As a reslt =o s#ould update it Muite freMuentl-/ #or


116


.rther in.or-ation see also the ali'ation an, 'ore il, li.e'='le -anage-ent e$a-le in Step &/ &e'ase o. Re, atOs A&AP Co--it-ent @e$laine, earlierB the asso'iate, ris) o. -a)ing so.t4are 'hanges to Re, at Enterrise *in$ is 'o-arativel= s-all/ e re'o--en, that =o do not postpone updating -our software% nstea, =o shol, invest in testing and roll*ack capa*ilities / . Satellite 6 is se, to -anage ?st the operating s-stem *ut not t#e applications rnning on to o. it it -ight -a)e sense to se composite content views instea, o. 'ontent vie4s .or ,e.ining a 'ore il,/ (his aroa'h 4ol, let =o -anage all @PetB 'on.igrations 4ithin a ,e,i'ate, 'ontent vie4 to sort in,ivi,al release '='les .or .ast'hanging 'on.igrations an, @-ostl= slo4 'hangingB so.t4are 'ontent/ (he .ollo4ing s=ste-se'i.i' a,atations shol, e made outside the 'ore il, ,e.inition @insi,e the ara-eterase, ali'ationse'i.i' or hostgrose'i.i' ,e.initionsB:  lo'ation ,ata'enter region or 'ontr=se'i.i' a,atations @.or e$a-le )e=oar, la=ot ti-eone et'/B  li.e'='lestagese'i.i' a,atations @(he 'ore il, is not sose, to e stage se'i.i'/B  an= ali'ationse'i.i' a,atations @(hese shol, e art o. the ali'ationOs 'ontent vie4B  an= s=ste-se'i.i' a,atations @(hese shol, e art o. the hostgro ,e.inition/B As e$laine, earlier the 'ore il, shol, e #ardware and virtualiation tec#nologagnostic/ &e'ase o. the 'rrent li-itations o. the stati' relationshi et4een hosts an, @'o-ositeB 'ontent vie4s additional 'ontent vie4s 'ol, not e ,=na-i'all= assigne, ,ring rovisioning an, the li.e'='le -anage-ent o. 'ore il,s/ (he core *uild content view s#ould contain all reMuired #ardware and virtualiation drivers .or all target s=ste-s/ Nevertheless =o 'an se )i')start te-lates an, Pet -o,les insi,e the 'ore il, to ,elo= arti'lar har,4are or a virt ,river automaticall-V these )i')start te-lates an, Pet -o,les se ,=na-i' environ-ent ,ete'tion an, 'ontent/ See Ste 7 .or -ore in.or-ation/ (o install the aroriate virtaliation ,rivers 4e nee, to 'on.igre the .ollo4ing ite-s:  a,,ing a,,itional so.t4are reositories to or 'ore il, ,e.initions


119

www%red#at%com

 enaling these reositories sing a'tivation )e=s  sing a Pet -o,le to ato-ati'all= install ;4are ,rivers or RE; agents ,een,ing on Pet .a't vales (=i'all= 'ore il,s ,o contain reMuired management software components @.or e$a-le a') -onitoring or s'he,ling agentsB/ . =or -anage-ent so.t4are rovi,es ,i..erent agents .or arti'lar ali'ations @.or e$a-le a se'ial -onitoring or a') agent .or a arti'lar ,ataaseB the core *uild s#ould contain t#e generic software agentC and configuration 4hereas the ali'ation se'i.i' agents an, 'on.igrations shol, e art o. the ali'ation 'ontent @vie4B/

Aote, Io -a= also nee, to slit the reositories e'ase Satellite 6 'rrentl= ,oes not let =o se the sa-e reositories in -ltile 'ontent vie4s .or a s=ste-/ n or soltion gi,e set or RE* 'ore il, 'ontains so.t4are a')ages .or varios virtaliation lat.or-s an, the Jai$ -onitoring agents/ hile ,e.ining 'ore il,s =o -st e a4are o. applicationC dependencies / Crrentl= =o 'annot assign  se the sa-e so.t4are reositor= -ltile ti-es in the sa-e s=ste- in,een,ent o. the 'ontent or 'o-osite 'ontent vie4s @see also 'hater 4ontent $iew RecommendationsB/ (his li-itation ,oes not allo4 =o to ,e.ine a ver= li-ite, 'ontent set 4hile =o are ,e.ining the 'ore il, an, then a,, ali'ation ,een,en'ies insi,e ali'ationse'i.i' 'ontent vie4s/ n other 4or,s the core *uild content definition #as to contain all dependencies for all applications rnning on to o. 'ore il,/

/n practice this -eans that 4e 4ol, re'o--en, that =o e$'l,e the EPE* reositor= .rothe 'ore il,/ %riginall= 4e se, Nagios 4hi'h is not in'l,e, in RE* t is art o. EPE*/ At that ti-e 4e 4ante, to se EPE*/ &e'ase the -onitoring agents nee,e, to e installe, on ever= s=ste- 4e in'l,e, the EPE* reositor= in the 'ore il, / . 4e 4ant to se a .ilter that restri'ts the 'ontent -a,e availale .ro- the EPE* reositor= to Nagios a')ages 4e 4ol, have an isse i. a arti'lar ali'ation @.or e$a-le or ACE 4esite 4hi'h is ase, on or,Press 'o-ing .ro- the EPE* reositor=B reGire, a,,itional 'ontent .ro- the EPE* reo/ e 'annot assign the EPE* reositor= -ore than on'e @.or e$a-le as art o. the 'ore il, 'ontent vie4 an, also as art o. the ACE e 'ontent vie4B/ e re'o--en, that =o se filters to restri't 'ontent availailit= at least .or non)enterprise)grade repositories li)e EPE*/ (his aroa'h -a= reGire a ne4 'ontent vie4 version 4ith a,ate,  enhan'e, .ilters ea'h ti-e a ne4 ali'ation nee,s a,,itional a')ages/

www%red#at%com

11=


Aote, Containers -a)e this arti'lar 'hallenge signi.i'antl= easier/ (he rin'ile o. la=ere, ali'ations @4here oth as an, their ,een,en'ies are in in,ivi,al la=ersB signi.i'antl= re,'es the 'o-le$it= o. -anaging ali'ation ,een,en'ies/ (he 'ore il, shol, also 'ontain the *asic Q minimum reMuired #ardening .or all s=ste-s in'l,ing:  'o--on so.t4are a')age e$'lsions @.or e$a-le net4or) sni..ersB  'o--on so.t4are a')age in'lsions @.or e$a-le itales DS so.t4are et'/B  a ,e.alt .ire4all 'on.igration @.or e$a-le onl= se'i.i' orts oen li)e SS + Satellite 6 reGire, ortsB  a ,e.alt SElin$ oli'= @.or e$a-le en.or'ing -o,eB 4hi'h -ight e li.te,  .or so-e ali'ations later  'o--on oli'ies an, har,ening 'on.igrations  tools .or oli'= -anage-ent an, veri.i'ation @.or e$a-le oenSCAPB

Ho% to $e!ine .our Core 7ui"ds .et#od 1, 3#e Eas- "pproac# (he easiest an, -ost 'o--on 4a= to ,e.ine a 'ore il, is ?st to ,e.ine the asolte -ini-- o. reGire, a')ages an, 'on.igrations/ An, then ro'ee, ste=ste to a,, the -ost 'o--on 'on.igrations =o are sing on =or s=ste-s/ .et#od ', Start @#ere ou "re Another aroa'h is to start 4here =o are 'rrentl= 'o-are all the e$isting hosts an, loo) .or si-ilarities so that =o 'an i,enti.= the s-allest 'o--on ,eno-inator/ %. 'orse =o 'an se Satellite 6 'aailities e'ase Re, at Satellite 'an rovi,e all the ne'essar= in.or-ation aot the so.t4are an, 'on.igrations o. =or hosts/ (o see a list o. all 'rrentl= installe, a')ages sing the Satellite 6 eU: 1/ go to osts ` All ost an, sele't one host/ 2/ Cli') on the Content tton on the to le.t/ !/ Sele't the Pa')ages ta/

Aote, As an alternative =o 'an se the Satellite 6 RES( AP to get a list o. all installe, a')ages o. a host/ At the ti-e o. this 4riting a--er C* ,oes not sort this a'tion/


11&

www%red#at%com

So-e a')ages that are not art o. all s=ste- ,e.initions -ight e 4orth installing on all s=ste-s @ese'iall= i. the asso'iate, ris) 'lassi.i'ation o. these a')ages is lo4B/ #or e$a-le i. onl= a arti'lar gro 4ithin =or organiation is sing vi-enhan'e, instea, o. the re vi a')age =o -ight 'onsi,er a,,ing vi-enhan'e, to all s=ste-s/ Lee in -in, that the goal o. ,e.ining 'ore il,s is to re,'e the asolte n-er o. ,erivatives in =or so.t4are ar'hite'tre/ %. 'orse this aroa'h is also vali, .or the ali'ation an, lat.or- stan,ar,iation 4e 'over in the ne$t se'tion/

Core 7ui"d aming con'entions &ase, on the t4ola=er segregationo.,ties 'on'et e$laine, earlier 4e ,istingish et4een the oerating s=ste- @'ore il,B an, an= ali'ations rnning on to o. it/ e se the strings bosO an, baO to -a)e this ,istin'tion/ %r 'ore il, ,e.initions re.le't a arti'lar RE* release @-a?or an, -inorB even i. the -inor release is the latest an, greatest/ e re'o--en, that =o have oth -a?or an, -inor releases o. RE* an, that =o il, RE*in,een,ent 'ontent vie4s .or the ali'ations rnning on to o. RE*/ Even i. te'hni'all= .easile 4eOve ,e'i,e, not to se an aggregate, 'ore il, ,e.inition a'ross RE* -a?or releases @onl= .easile i. a 'ontent vie4 is se, .or -ltile RE* releasesB/ A 'o-osite 'ontent vie4 'onsisting o. -ltile RE* 'ore il, variants is not ossile in or s'enario e'ase o. the overlaing Pet -o,les/ Sin'e -ost o. or ali'ation 'ontent vie4s are RE*in,een,ent an, ,o not se the otional version or release tag 4eOre a,,ing it here to ,ivi,e or ,i..erent 'ore il,s/ (his aroa'h lea,s to the .ollo4ing na-ing 'onvention ,e.inition .or or 'ore il, 'ontent vie4s: 'vosrhel  _ 7Server  6Server `

n -ost 'sto-er environ-ents so-e ali'ations nee, to re-ain on an ol,er -inor release version o. Re, at Enterrise *in$ @sall= e'ase o. 'erti.i'ation an, sort 'ontra't rovisionsB/ (=i'all= these are rorietar= ali'ations .ro- ig so.t4are ven,or 'o-anies/ n so-e 'ases this restri'tion is -ore a 'ontra'trelate, than a te'hni'al ris) ,e to Re, atOs A&AP Stailit= Co--it-ent @see 'hater 8IJ .or .rther ,etailsB/ n these 'ases 4e re'o--en,e, =o 'reate an a,,itional 'ore il, ase, on a arti'lar -inor release version o. Re, at Enterrise *in$/ nstea, o. sing 7Server or 6Server the na-ing 'onvention .or the 'ore il, .or these lega'= ali'ations 4ol, se'i.i'all= loo) li)e this: 'vosrhel  _ 6/!  7/0 `

www%red#at%com

1'0


An a,,itional otion 'an e to have a nightl= il, that 4ol, se the 'reation ,ate or so-ething si-ilar as the 'ore il, release version: 'vosrhel  _ 20150519  2CI2015 `

nsi,e this soltion gi,e 4e 4ill rovi,e e$a-les .or oth t=es o. 'ore il,s/

Core 7ui"d So!t%are Re&ositories As state, earlier 'ore il,s ,e.ine the s-allest 'o--on ,eno-inator .or so.t4are an, 'on.igrations share, a'ross all @or at least -ostB o. =or s=ste-s/ &e'ase Satellite 6 'annot rese the sa-e reositories in t4o 'ontent vie4s asse-le, together into a 'o-osite 'ontent vie4 @see also the 4ontent $iew Recommendations se'tionB or 'ore il, ,oes not include reositories se, = application)specific content views @ese'iall= i. these vie4s reGire ,i..erent .iltersB/ e ,o not include t#e following repositories even i. the= are art o. the enhan'e, set o. so.t4are reositories elonging to the Re, at Enterrise *in$ ro,'t @e$'l,ing the Re, at So.t4are Colle'tions 4hi'h is shie, as a ,e,i'ate, ro,'tB:    

Re, at Enterrise *in$ E$tras Re, at Enterrise *in$ %tional Re, at Enterrise *in$ Sle-entar= Re, at So.t4are Colle'tions

%r 'ore il,s 'onsist ri-aril= o. so.t4are a')ages that are art o. the Re, at Enterrise *in$ ase reositor=/ eOre also a,,ing so-e nonRe, at reositories ri-aril= 'o--on tools se, .or s=ste- -anage-ent @a') -onitoringB roses/ e are a,,ing the .ollo4ing so.t4are reositories to or 'ore il,:    

Re, at Enterrise *in$ Server RPs @ase oerating s=ste-B Re, at Enterrise *in$ Server Li')start @reGire, .or rovisioningB Re, at Satellite 6 (ools @'lient tools se, in 'on?n'tion 4ith Satellite 6B Jai$ Reositor= @in'l,es the Jai$ -onitoring agentsB

Aote, n 'ontrast to Satellite 6/0 the Re, at Enterrise *in$ Co--on RPs reositor= is not reGire, an=-ore/ All Satellite 6 relate, 'lient tools @.or e$a-le )atelloagent etB have een -ove, into the ne4 Re, at Satellite 6 (ools reositor=/ #or .rther in.or-ation see: htts:a''ess/re,hat/'o-soltions12751!


1'1

www%red#at%com

A,,itionall= 4e are a,,ing the .ollo4ing reositories ,een,ing on the virtaliation lat.or-:  in 'ase o. Red Hat Enterprise $irtualiation d RE*7: Re, at Enterrise *in$ Co--on RPs d RE*6: Re, at Enterrise ;irtaliation Agents .or RE* 6 Server RPs  in 'ase o. $.ware vSp#ere d RE*6: ;4are (ools Reositor= .or RE*6 d RE*7:  not#ing @in'l,e, in RE*7B  (he .ollo4ing ha--er 'o--an,s 'reate the 'ore il, 'ontent vie4 an, a,, the reositories elonging to or RE*7 'ore il,: ha--er 'ontentvie4 'reate na-e 3'vosrhel7Server3 X ,es'rition 3RE* Server 7 Core &il, Content ;ie43 organiation 3%R3  so.t4are reositories ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel7Server3 X reositor= HRe, at Enterrise *in$ 7 Server Li')start $"66 7ServerH X ro,'t HRe, at Enterrise *in$ ServerH ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel7Server3 X reositor= HRe, at Enterrise *in$ 7 Server RPs $"66 7ServerH X ro,'t HRe, at Enterrise *in$ ServerH ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel7Server3 X reositor= HRe, at Satellite (ools 6 &eta .or RE* 7 Server RPs $"66 7ServerH X ro,'t HRe, at Enterrise *in$ ServerH ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel7Server3 X reositor= HRe, at Enterrise *in$ 7 Server  R Co--on RPs $"66 7ServerH X ro,'t HRe, at Enterrise *in$ ServerH ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel7Server3 X reositor= HJai$RE*7$"66H X ro,'t HJai$onitoringH ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel7Server3 X reositor= H&areosRE*7$"66H X ro,'t H&areos&a')RE*7H

www%red#at%com

1''


e are also sing an e$'l,e .ilter to .ilter ot arti'lar a')ages that 4e ,o not 4ant to -a)e availale to or target hosts/ As an e$a-le 4e are e$'l,ing the emacs a')ages @althogh there is nothing 4rong 4ith emacsB/ (o re,'e the n-er o. availale a')ages insi,e =or 'ore il, =o 'an also e$'l,e entire a')age gros instea, o. ?st in,ivi,al a')ages/ (he .ollo4ing ha--er 'o--an, 'reates the .ilter an, .ilter rle/

Aote, Until &J 122""90 is .i$e, =o nee, to se the reositor= D instea, o. its na-e/  e$'l,e .ilter e$a-le sing e-a's a')age  ,e to htts:gilla/re,hat/'o-sho4g/'gifi,122""90 =o nee, to rovi,e  reositor= D instea, o. na-e other4ise the .ilter alies to all reos REP%D@ha--er 'sv reositor= list na-e HRe, at Enterrise *in$ 7 Server RPs $"66 7ServerH X organiation %R  gre vi HDH  a4) #HH H\rint 1]HB ha--er 'ontentvie4 .ilter 'reate t=e r- na-e He$'l,inge-a'sH X ,es'rition HE$'l,ing e-a's a')ageH in'lsion.alse X organiation 3%R3 reositor=i,s \REP%D] X 'ontentvie4 3'vosrhel7Server3 ha--er 'ontentvie4 .ilter rle 'reate na-e He-a's^H X organiation 3%R3 'ontentvie4 3'vosrhel7Server3 X 'ontentvie4.ilter He$'l,inge-a'sH

&e.ore lishing or 'ontent vie4 4e -st a,, the reGire, Pet -o,les that elong to or 'ore il,/

ACME Core 7ui"d Sam&"e /u&&et Modu"es (he .ollo4ing se'tion rovi,es so-e asi' e$a-les o. Pet -o,les se, in this soltion gi,e/ Sin'e it 'overs onl= asi' e$a-les an, not all o. the- are the est 4a=s to ta')le a arti'lar role- 4ith Pet e$erien'e, Pet sers -ight 4ant to s)i this se'tion/ Starting 4ith Satellite 6/1 Re, at has in'l,e, a ,e,i'ate, Pet i,e as art o. the Satellite 6 ro,'t ,o'-entation: htts:a''ess/re,hat/'o-,o'-entationenUSRe,atSatellite6/1ht-lPeti,ein ,e$/ht-l


1'5

www%red#at%com

As e$laine, in the 4ore Build Recommendations se'tion 4e are a,,ing so-e sa-le Pet -o,les to a'hieve the goals o. or 'ore il, 'on.igration ,es'rie, earlier/ (his soltion gi,e ses the .ollo4ing sa-le Pet -o,les:  A -o,le b-ot,O to -anage the -essage o. the ,a= .ile in et'-ot,  A -o,le to install a,,itional r- a')ages 'alle, b'oreil,a')agesO  A -o,le 'alle, bntO to set the right nt servers ,een,ing on the lo'ation or li.e'='le environ-ents sin'e 4eOre sing ,i..erent nt servers in so-e o. the A -o,le 'alle, bloghostO to 'on.igre rs=slog re-ote logging @'lient otionB  A -o,le 'alle, bai$O to 'on.igre the Jai$ -onitoring 'lient

Sample Puppet Module for /etc/motd File (o ,e-onstrate a t=i'al Pet -o,le li.e'='le in Satellite 6 4eOre starting 4ith a si-le Pet -o,le .or -anaging the /etc/motd .ile / An= ser on an= s=ste- 'ol, ta)e the .ollo4ing stes/

1% 4reate an initial Puppet module that 'reates a -eta,ata te-late .or s/  et -o,le generate a'-e-ot, e nee, to 'reate a -eta,ata/?son .ile .or this -o,le/ Please ans4er the .ollo4ing GestionsV i. the Gestion is not ali'ale to this -o,le .eel .ree to leave it lan)/ Pet ses Se-anti' ;ersioning @se-ver/orgB to version -o,les/ hat version is this -o,lef Y0/1/0[ ` ho 4rote this -o,lef Ya'-e[ ` hat li'ense ,oes this -o,le 'o,e .all n,erf YAa'he 2/0[ ` o4 4ol, =o ,es'rie this -o,le in a single senten'ef ` asi' -ot, 'on.igration as art o. or 'ore il, ,e.inition here is this -o,leHs sor'e 'o,e reositor=f ` here 'an others go to learn -ore aot this -o,lef ` here 'an others go to .ile isses aot this -o,lef `

www%red#at%com

1'8


 \ 3na-e3: 3a'-e-ot,3 3version3: 30/1/03 3athor3: 3a'-e3 3s--ar=3: 3asi' -ot, 'on.igration as art o. or 'ore il, ,e.inition3 3li'ense3: 3Aa'he 2/03 3sor'e3: 33 3ro?e'tage3: nll 3issesrl3: nll 3,een,en'ies3: Y \ 3na-e3: 3etlasst,li3 3versionrange3: 3` 1/0/03 ] [ ]  Aot to generate this -eta,ataV 'ontinef YnI[ ` I Noti'e: enerating -o,le at ho-eet,eva'-e-ot,/// Noti'e: Polating ER& te-lates/// #inishe,V -o,le generate, in a'-e-ot,/ a'-e-ot,Ra)e.ile a'-e-ot,-ani.ests a'-e-ot,-ani.estsinit/ a'-e-ot,se' a'-e-ot,se''lasses a'-e-ot,se''lassesinitse'/r a'-e-ot,se'se'heler/r a'-e-ot,tests a'-e-ot,testsinit/ a'-e-ot,READE/-, a'-e-ot,-eta,ata/?son

'% Define file attri*utes and t#e templates to se/ e a,ate, the .ile acme-motd/manifests/init.pp to -a)e it loo) li)e this: 'lass -ot, \ .ile \ Het'-ot,H: ensre ` .ile 'ontent ` te-late@3\-o,lena-e]-ot,/er3B o4ner ` root gro ` root -o,e ` H06H ]


1'(

www%red#at%com

]

5% 4reate a template an, a,at it sing so-e asi' Pet .a'ts/ (his ste ,e-onstrates ho4 to se 'ertain variales/  el'o-e to the host na-e, _F hostna-e F` _F oeratings=ste- F` _F oeratings=ste-release F` _F i. hasvarialef @3ar'hite'tre3B then F`_F ar'hite'tre F`_F en, F`  Pet: _F etversion F` #a'ter: _F .a'terversion F` #DN: _F .G,n F` P: _F ia,,ress F` _F i. hasvarialef@3ro'essor03B then F` Pro'essor: _F ro'essor0 F` _F en, F` _F i. hasvarialef@3-e-or=sie3B then F` e-or=: _F -e-or=sie F` _F en, F`

Aote, #or -ore in.or-ation aot sing Pet .a'ts go to: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l Useri,e se't Re,at SatelliteUseri,eStoring an,aintainingost n.or-ation/ht-l se't Re, at SatelliteUseri,eStoringan,aintainingost n.or-ationUsing#a'teran,#a 'ts 8% Build the Pet -o,le: et -o,le il, a'-e-ot,

%n'e =o have s''ess.ll= ilt the Pet -o,le =o 'an .in, the reslting -o,le a')age in tar/g .or-at insi,e the a'-e-ot,)g .ol,er/

Sample Puppet Module for Additional RPM Packages As e$laine, insi,e the 'hater 4ore Build Recommendations the so.t4are ,e.initions insi,e the rovisioning te-lates shol, 'ontain onl= the minimal reMuired set of packages / A,,itional so.t4are a')ages 'an e -aintaine, insi,e the 'ore il, 'ontent vie4 to -a)e it easier to adapt t#e software definition of all #osts wit#out reprovisioning or -anal installing ne4 or a,,itional a')ages in all e$isting hosts/ www%red#at%com

1'6


e are sing a ver= si-le Pet -o,le that 'ontains ?st the .e4 a,,itional a')ages 4e 4ant to see installe, on all or hosts/ (he arra= insi,e the -ani.est 'ontains .or a,,itional a')ages an, 'an e overri,,en = sing the .a Re, at Satellite 6 S-art Class Para-eter/ 'lass 'oreil,a')ages @ )gs  Y vi-enhan'e, s'reen stra'e tree [ B\ a')age\ )gs: ensre ` installe, ] ]

ore ,o'-entation .or this sa-le Pet -o,le is in "ppendi? //

Sample Puppet Module for the ntp Configuration As a se'on, e$a-le 4eOve 'reate, a -o,le that ses nt to 'on.igre the ti-e s=n'hroniation o. all the s=ste-s/ (his e$a-le ses Satellite 6 Smart $aria*les / (his -o,le:  nstalls the nt r- a')age  Starts the nt ,ae-on  Enales the nt ,ae-on .or atostart d (he nt ,ae-on is restarte, ato-ati'all= i. the 'on.igration is 'hange,/  Con.igres nt to s=n'hronie either a single server or a list o. servers d (his 'on.igration is ,one 4ith a te-late/ d t ses Mool/nt/org as ,e.alt t it 'an e overri,,en 4ith S-art Class Para-eters/ ore ,o'-entation .or this sa-le Pet -o,le is in "ppendi? //

Sample Puppet Module: Zabbix Monitoring Agent Configuration (his sa-le -o,le installs the reGire, -onitoring agent a')ages an, starts an, enales the 'orreson,ing ai$,ae-on/ n a,,ition to earlier e$a-les 4eOve se, the blatestO ,e.inition insi,e the a')ages se'tion o. this -o,le to ,e-onstrate the i-a't o. this 'on.igration/ Using the blatestO otion insi,e a Pet -o,le the 'orreson,ing a')ages 4ill e ato-ati'all= ,ate, ,ring the ne$t Pet rn i. the ne4 'ontent vie4 version 'ontaining an ,ate, version o. this a')age has een ro-ote, to the li.e'='le refarc#)feed*ack+red#at%com

1'9

www%red#at%com

environ-ent the target s=ste- lives in/ (here is no .rther a'tion reGire, to ,ate this arti'lar a')age sing the eUi or C* or AP/ ore ,o'-entation .or this sa-le Pet -o,le is in "ppendi? //

Sample Puppet Module for rsyslog Configuration (here: client) As an e$a-le .or a -ltirose Pet -o,le 4eOve 'reate, a sa-le -o,le to -anage the rs=slog log -anage-ent 'on.igration/ e are sing the sa-e -o,le to -anage oth the 'lient an, server 'on.igrations t are sing ,i..erent Pet 'lasses .or the-/ &e'ase the 'lient 'on.igration shol, e ,elo=e, on all hosts an, is there.ore art o. the 'ore il, ,e.inition 4eOve a,,e, the -o,le to the 'ore il, 'ontent vie4/

Aote, As e$laine, in the Satellite 6 4ontent $iew Recommendations se'tion i. the sa-e -o,le is art o. -ltile 'ontent vie4s =o 'annot asse-le -ore than one o. thetogether into a 'o-osite 'ontent vie4/ (here.ore the loghost server 'ontent vie4 @see Step 6B ,oes not 'ontain this -ltirose -o,le e'ase it is alrea,= art o. the 'ore il, 'ontent vie4/ ore ,o'-entation .or this sa-le Pet -o,le is in "ppendi? //

Puppet Labs Modules stdlib and concat Sin'e 4e are sing so-e -o,les .ro- Pet *as .or or ali'ations 4e have a,,e, to 'o--on ,een,en'= -o,les to or 'ore il, ,e.inition:  st,li -o,le @stan,ar, lirar= o. resor'es .or Pet -o,lesB  'on'at -o,le @to 'onstr't .iles .ro- -ltile .rag-ents o. te$tB (here.ore 4e ,o4nloa, an, sh the- into the ACE Pet reositor= sing ha--er C*:  ,o4nloa, an, sh into 'sto- et reo the etlas -o,les 4e nee, 4get % t-etlasst,li/6/0/tar/g

htts: .orgeai /etlas/'o- v ! .ilesetlas st,li /6/0/ tar/g 4get % t-etlas'on'at1/2/!/tar/g

htts: .orgeai /etlas/'o- v ! .ilesetlas 'on'at 1/2/!/ tar/g

www%red#at%com

1'=


 a,, these -o,les to ACE Pet reo ha--er reositor= loa,'ontent organiation MACE X ro,'t ACE na-e 3ACE Pet Reo3 X ath t-etlasst,li/6/0/tar/g ha--er reositor= loa,'ontent organiation MACE X ro,'t ACE na-e 3ACE Pet Reo3 X ath t-etlas'on'at1/2/!/tar/g

Adding All Core Build Puppet Modules to the Core Build Content View (he .ollo4ing ha--er 'o--an,s a,, the Pet -o,les e$laine, aove to or RE*7 'ore il, 'ontent vie4: .or -o,le in H-ot,H HntH H'oreil,a')agesH HloghostH Hai$H Hv-4aretoolsH HrhevagentH Hst,liH H'on'atH ,o ha--er 'ontentvie4 et-o,le a,, na-e \-o,le] X 'ontentvie4 'vosrhel7Server X organiation %R ,one

Red Hat Sate""ite  Con!ig 3rou&s Satellite 6 4onfig 7roups let =o asso'iate -ltile Pet 'lasses to a host gro or to a single host/ (hese are sall= se, to ,e.ine ro.iles @.or e$a-le to 'on.igre an entire ali'ation sta')B/ Con.ig ros are not se'i.i' to an environ-ent so all Pet 'lasses that are availale n,er Configure ➤ Puppet classes 'an e assigne, to a Con.ig ro/

Aote,  &e a4are that Pet 'lasses assigne, to a Con.ig ro -a= not e availale in the environ-ent 4here a host is la'e,/ (his isse 'an reslt in the host not eing ale to 'ons-e that arti'lar Pet 'lass/  Pet 'lasses that are not availale to a host assigne, .ro- a Con.ig ro are greyed ot/ Changes -a,e on a Con.ig ro are ato-ati'all= 'hange, .or ever= ost ro that ses that Con.ig ro -eaning that a 'hange onl= nee,s to e -a,e in a single la'e @an, not -ltile la'esB 4here the sa-e Pet 'lasses are se,/ refarc#)feed*ack+red#at%com

1'&

www%red#at%com

Naming Conventions e are sing the re.i$ cfg to -ar) all 'on.ig grosV =o 'an se an= te$t =o re.er a.ter '.g/ '.g  _ na-e `

Core Build Config Group e 'reate a Con.ig ro 'alle, cfg-corebuild that 4ill e assigne, to ever- host gro/ (he cfg-corebuild Con.ig ro ses the .ollo4ing Pet 'lasses .or the 'oreil, 'on.igration o. a host:        

nt -ot, ai$ git::'lient loghost::'lient 'oreil,Pa')ages rhevagent v-4aretools

(o 'reate the Con.ig ro go to: 1/ Configure ➤ Config groups ➤ !ew Config $roup 2/ nsert the Na-e: cfg-corebuild !/ #ro- availale 'lasses sele't the 'orreson,ing Pet 'lasses .ro- the list aove / Cli') on 1ubmit

www%red#at%com

150


Aote, (he reGire, ,een,en'ies stdlib an, concat have not een a,,e, to these 'on.ig gros/ o4ever =o still nee, to ensre that the= are insi,e the sa-e Pet environ-ent/ (his is ato-ati'all= ,one sin'e the= are art o. the sa-e 'ontent vie4/

/ub"ishing and /romoting the Core 7ui"d Content 6ie%s A.ter 4eOve a,,e, all reGire, so.t4are reositories an, Pet -o,les elonging to or 'ore il,s 4e 'an .inall= lish the- an, ro-ote sing or ,e.alt li.e'='le environ-ent ath @'onsisting o. Dev ` A ` Pro, stagesB/ (o lish an, ro-ote these 'ontent vie4s: 1/ Cli') on the le Plish Ne4 ;ersion tton/ 2/ Provi,e a ,es'rition/ !/ Cli') Save/ (he 'ontent vie4 4ill e lishe,/


151

www%red#at%com

e nee, to 4ait ntil the lishing ste has een 'o-lete, e.ore ro-oting it to the Dev stage/

Aote, . =o get an error -essage M;ali,ation .aile,: Pet environ-ent 'anHt e lan) 4hile lishing a 'ontent vie4 =o nee, to rn the .ollo4ing 'o--an, to .i$ this: .ore-anra)e 'onsole

(he sa-e reGire-ent alies i. ha--er C* is se, to lish an, ro-ote a 'ontent vie4/ (here.ore 4eOre not sing the ha--er as=n' otion 4hile lishing/

www%red#at%com

15'


(o ro-ote a 'ontent vie4 sing ha--er C* =o -st have an a,,itional otion: the 'ontent vie4 version D @in the e$a-le elo4: 2"B/

Aote, Content iew #2 an, content iew ersion #2 are two different items / *oo) at the .ollo4ing ott o. the ha--er 'o--an, @in this e$a-le 4e alrea,= have t4o versions lishe, an, 4eOre sing the ase ott .or-at .or etter rea,ailit=B: ha--er ott ase 'ontentvie4 list na-e 'vosrhel7Server organiation ACE Content ;ie4 D: 5 Na-e: 'vosrhel7Server *ael: 'vosrhel7Server Co-osite: Reositor= Ds: 1 2 ! 10 9 ha--er ott ase 'ontentvie4 version list 'ontentvie4i, ! '= D: Na-e: 'vosrhel7Server 2/0 ;ersion: 2/0 *i.e'='le Environ-ents: *irar= D: ! Na-e: 'vosrhel7Server 1/0 ;ersion: 1/0 *i.e'='le Environ-ents:

(o lish an, ro-ote or RE*7 'ore il, 'ontent vie4 sing the -ost 'rrent version o. the 'ontent vie4 sing ha--er =o -st e$e'te the .ollo4ing 'o--an,s: ha--er 'ontentvie4 lish na-e 3'vosrhel7Server3 organiation 3%R3 C;D@ha--er 'sv 'ontentvie4 list na-e 'vosrhel7Server organiation \%R]  gre vi HContent ;ie4 DH  a4) #HH H\rint 1]H B ;Djha--er 'ontentvie4 version list 'ontentvie4i, \C;D]  a4) #HH H\rint 1]H  sort n  ta'  hea, n 1j ha--er 'ontentvie4 version ro-ote 'ontentvie4i, C;D X organiation 3%R3 X toli.e'='leenviron-ent DE; X i, ;D X as=n' Content vie4 is eing ro-ote, 4ith tas) 177.9,0!a..aa.,07"66ea99


155

www%red#at%com

No4 4e have s''ess.ll= 'reate, or RE*7 'ore il,/ Io 'an 'reate lish an, ro-ote the entire RE*6 'ore il, in a si-ilar .ashion = sing the .ollo4ing ha--er 'o--an,s: ha--er 'ontentvie4 'reate na-e 3'vosrhel6Server3 X ,es'rition 3RE* Server 6 Core &il, Content ;ie43 X organiation 3%R3  so.t4are reositories ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel6Server3 X reositor= HRe, at Enterrise *in$ 6 Server Li')start $"66 6/5H X ro,'t HRe, at Enterrise *in$ ServerH ha--er 'ontentvie4 a,,reositor= X organiation 3%R3 X na-e 3'vosrhel6Server3 X reositor= HRe, at Enterrise *in$ 6 Server RPs $"66 6/5H X ro,'t HRe, at Enterrise *in$ ServerH  there is an in'onsisten'= here et4een RE*7 an, RE*6: RE*6 reo na-e 4ithot 6Server at the en, ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel6Server3 X reositor= HRe, at Satellite (ools 6 &eta .or RE* 6 Server RPs $"66H X ro,'t HRe, at Enterrise *in$ ServerH ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel6Server3 X reositor= HJai$RE*6$"66H X ro,'t HJai$onitoringH ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vosrhel6Server3 X reositor= H&areosRE*6$"66H X ro,'t H&areos&a')RE*6H  e$'l,e .ilter e$a-le sing e-a's a')age  ,e to htts:gilla/re,hat/'o-sho4g/'gifi,122""90 =o nee, to rovi,e reositor= D  instea, o. na-e other4ise the .ilter alies to all reos REP%D@ha--er 'sv reositor= list na-e HRe, at Enterrise *in$ 6 Server RPs $"66 6/5H X organiation %R  gre vi HDH  a4) #HH H\rint 1]HB ha--er 'ontentvie4 .ilter 'reate t=e r- X na-e He$'l,inge-a'sH ,es'rition HE$'l,ing e-a's a')ageH X in'lsion.alse organiation 3%R3 reositor=i,s \REP%D] X

www%red#at%com

158


'ontentvie4 3'vosrhel6Server3 ha--er 'ontentvie4 .ilter rle 'reate na-e He-a's^H organiation 3%R3 X 'ontentvie4 3'vosrhel6Server3 'ontentvie4.ilter He$'l,inge-a'sH  a,, v-4are tools an, rhev agent reos ha--er 'ontentvie4 a,,reositor= organiation 3%R3 na-e 3'vosrhel6Server3 X reositor= H;4are(oolsRE*6$"66H ro,'t H;4are(oolsRE*6H ha--er 'ontentvie4 a,,reositor= organiation 3%R3 na-e 3'vosrhel6Server3 X reositor= HRe, at Enterrise ;irtaliation Agents .or RE* 6 Server RPs $"66 6/5H X ro,'t HRe, at Enterrise *in$ ServerH  Pet -o,les 4hi'h are art o. 'ore il,  Note: sin'e all -o,les are RE* -a?or release in,een,ent 4eHre a,,ing the sa-e -o,les as .or RE* 7 Core &il, .or -o,le in H-ot,H HntH H'oreil,a')agesH HloghostH Hai$H Hv-4aretoolsH HrhevagentH ,o ha--er 'ontentvie4 et-o,le a,, na-e \-o,le] X 'ontentvie4 'vosrhel7Server X organiation %R ,one  C; lish 4ithot as=n' otion to ensre that the C; is lishe, e.ore 4e 'reate CC;s in the ne$t ste ha--er 'ontentvie4 lish na-e 3'vosrhel6Server3 organiation 3%R3  ro-ote it to DE;APR%D e$ort RE*6C&;Djgetlatestversion 'vosrhel6Serverj e$ort RE*6C;D@ha--er 'sv 'ontentvie4 list na-e 'vosrhel6Server X organiation \%R]  gre vi HContent ;ie4 DH  a4) #HH H\rint 1]H B e'ho 3,enti.ie, ;ERS%N D \RE*6C&;D] as -ost 'rrent version o. or RE*6 Core &il,/3 e'ho 3Pro-oting it no4 to DE; A an, PR%D/ (his -ight ta)e a 4hile/3 ha--er 'ontentvie4 version ro-ote 'ontentvie4i, RE*6C;D X organiation 3%R3 toli.e'='leenviron-ent DE; i, RE*6C&;D ha--er 'ontentvie4 version ro-ote 'ontentvie4i, RE*6C;D X organiation 3%R3 toli.e'='leenviron-ent A i, RE*6C&;D ha--er 'ontentvie4 version ro-ote 'ontentvie4i, RE*6C;D X organiation 3%R3 toli.e'='leenviron-ent PR%D i, RE*6C&;D

Aotes,  #or lega'= ali'ations that reGire a dedicated and usuall- older minor release version of Red Hat Enterprise 2inu? @,e to S;se'i.i' sort or 'erti.i'ation li-itationsB =o -ight 4ant to 'reate an a,,itional ,e,i'ate, 'ore il, variant/ e ,o not 'over this oeration here e'ase the ro'e,re is si-ilar to the e$a-les aove/


15(

www%red#at%com

 e ,i, not create a composite content view containing all core *uild content views e'ase 4e are sing the sa-e Pet -o,les in -ltile 'ore il, 'ontent vie4s/ As a reslt 4e 'ol, not asse-le thetogether/

www%red#at%com

156


Step 6: Define Your Application Content n the earlier 'haters 4e ,es'rie, ho4 to ,e.ine an, ,elo= an enhan'e, oerating s=ste,e.inition @'ore il,B on to o. an e$isting virtaliation in.rastr'tre/ n a 'lo, 'onte$t this ,es'ries an /nfrastructure as a Service @aaSB set/ (hogh 'ore il, -anage-ent is the .o's area o. Re, at Satellite enhan'ing these 'aailities to a Platform as a Service @PaaSB set @at least .or in.rastr'tre an, a')en, servi'esB is ?st an a,,itional la=er on to o. the set ,es'rie, earlier/ (he integration o. Pet as a 'on.igration -anage-ent tool -a)es it signi.i'antl= easier to ,e.ine ,elo= an, -anage oth the oerating s=ste- an, ali'ations rnning on to o. it/

Aote, Ali'ation ,elo=-ent is not the ri-ar= target o. Satellite 6 even i. te'hni'all= .easile/ e re'o--en, sing a ,e,i'ate, PaaS tool .or this se 'ase s'h as Re, at %enShi.t Enterrise/ All Re, at Satellite 6 entities an, ro'e,res e$laine, earlier 'an e se, i,enti'all= .or ali'ation li.e'='le -anage-ent as .or oeration s=ste-  'ore il, li.e'='le -anage-ent/ n this se'tion 4e 4ill a,at the 'rrent 'on.igration a''or,ingl=/ Sin'e 4e have alrea,= 'reate, the t4o ,i..erent oerating s=ste-s 'ontent vie4s .or RE* 6 an, 7 4e no4 nee, to 'reate the 'ontent vie4s .or the ali'ations rnning on to o. RE*/ A.ter4ar,s 4e 4ill asse-le the- into a 'o-osite 'ontent vie4/ e 4ill 'all all .inal server ersonalities 3 roles3 an, all in'l,e, 'o-onents @in,een,ent o. share, or singleroseB 3 profiles%3 (his -eans that all siness ali'ations an, in.rastr'tre servi'es are roles t the inherent 'o-onents @.or e$a-le ariaD& it or,Press an, also or 'ore il, itsel.B are profiles / . 4e -a this rin'ile @ri-aril= 'o-ing .ro- PetB to or Satellite 6 o?e'ts all roles #ave dedicated composite content views that 'ontain one or -ore content views of profiles/ (he -ain reason .or this aroa'h is that the .inal server ersonalit= is 'on.igre, as a host gro an, ea'h host gro 'an onl= e asso'iate, to a single 'ontent vie4 or a 'o-osite 'ontent vie4/ t is not ossile to assign -ltile 'ontent vie4s @.or e$a-le or,Press + ariaD& + Core&il,B at this ti-e/ #or .rther ,etails see the 4ontent $iew Recommendations 'hater/ (he ro'e,re .or 'reating a 'ontent vie4 .or an ali'ation is si-ilar to 4hat 4e ,es'rie, earlier 4hen 'reating or 'ore il, 'ontent vie4s/ (he -ain ,i..eren'e et4een the %S @Core &il,B 'ontent vie4 an, the ali'ation 'ontent vie4s is ri-aril= ho4 4e ans4er so-e


159

www%red#at%com

,esign Gestions/ n a,,ition to the general ,is'ssion aot sing an ali'ationse'i.i' 'ontent vie4 'o-osite 'ontent vie4 or asse-le, 'o-osite 'ontent vie4 @'onsisting o. resale 'o-onent 'ontent vie4s as ,is'sse, in Step 8B 4e nee, to -a)e another ,esign ,e'ision insi,e the ali'ation la=er/ ltitier ali'ations 'onsisting o. ,i..erent s'o-onents or sta') la=ers @.or e$a-le .ronten, -i,tier ,ataase a')en,B 'an e installe, in t4o ,i..erent 4a=s:  as a single)#ost Q all)in)one setup 4here all 'o-onents are ,elo=e, 4ith the sa-e server  as a multi)#ost Q federated setup 4here at least so-e 'o-onents are installe, in a .e,erate, 4a= (hese ,esign 'riteria -ight in.len'e the 'ontent vie4 ,esign ,e'ision as 4ell/ Althogh sing an allinone 'ontent vie4 that 'onsists o. all inherent 'o-onents re,'es the total n-er o. 'ontent vie4s it also in'reases the n-er o. reGire, 'ontrol ara-eters/ . 4e 'reate an allinone 'ontent vie4 an, ,o not 4ant to e$e'te a singlehost @t instea, a .e,erate, setB 4e nee, to 'ontrol the ,elo=-ent o. the arti'lar 'o-onents that =o shol, install on a target host = sing ara-eters han,e, over ,ring the ne4 host ,e.inition/ n or soltion gi,e 4eOve ,e'i,e, to se 'o-onentase, 'ontent vie4s e'ase or ali'ation ar'hite'tre has een ,esigne, to e a -ltihost ,elo=-ent/

ACME8s Sam&"e A&&"ication Architecture All or ACE ali'ations rn on to o. Re, at Enterrise *in$/ Althogh -ost o. the ali'ations rn on to o. RE* 7 4e still se RE* 6 .or so-e servers/ (he .ollo4ing ,iagra- illstrates the relationshi et4een the ali'ations an, the oerating s=steversions:

www%red#at%com

15=


Sam&"e A&&"ication +1 git Ser'er it is a .ast s'alale ,istrite, revision 'ontrol s=ste-/ (he 'orreson,ing so.t4are a')ages are art o. Re, at Enterrise *in$ an, ne4er versions are also availale in Re, at So.t4are Colle'tions/ e are sing -ltile git servers as ,e,i'ate, revision 'ontrol s=ste-s to 'entrall= -anage varios so.t4are an, 'on.igration ite-s/ (hese in'l,e:    

all Pet -o,les ,elo=e, = Re, at Satellite 6 all s'rits se, to ato-ate se'i.i' se 'ases all te-lates 4e have 'reate, or a,ate, insi,e Satellite 6 all so.t4are @sor'e 'o,eB an, 'on.igration .iles se, = ACE so.t4are ,evelo-ent ,eart-ents

e are sing Re, at Satellite 6 to rovision an, -aintain varios git servers ato-ati'all= to enale etter sort o. or ACE so.t4are ,evelo-ent e..orts an, ro?e'ts/

Example: Puppet Module for git (Server and Client) Si-ilar to the 'ore il, Pet -o,les in Step ( the .ollo4ing sse'tion rovi,es so-e asi' e$a-les o. Pet -o,les se, insi,e this soltion gi,e/ Sin'e it 'overs onl= asi' e$a-les an, not all o. the- are ne'essaril= the est 4a= to ta')le a arti'lar role- 4ith Pet e$erien'e, Pet sers -ight 4ant to s)i this 'hater/ (he ri-ar= goal o. this -o,le is to rovi,e a si-le e$a-le o. a -ltirose Pet -o,le se, .or oth the server an, 'lient 'on.igration o. the git revision 'ontrol s=ste-/ n


15&

www%red#at%com

or ACE sa-le s'enario 4e se onl= the server 'o-onent to rovision the git Pet -o,le reositor= server @e$laine, in Step 1B/ &asi'all= the Pet -o,le er.or-s the .ollo4ing tas)s:  nstalls the reGire, so.t4are a')ages an, all its ,een,en'ies d the git19git a')age .ro- the Re, at So.t4are Colle'tions reositor= i. it is a'ting as a git server @,e.altB d the ,e.alt git a')age as art o. Re, at Enterrise *in$ i. it is a'ting as a git 'lient d or an= other a')age na-e rovi,e, as a S-art Class Para-eter  nstalls the Aa'he htt server a')age to -a)e the git reositor= availale via htt @reGire, .or reglar reositor= s=n'hroniation in 'on?n'tion 4ith Satellite 6B  Starts an, er-anentl= enales starting the htt ,ae-on  ntegrates the git inar= ath into ro.ile/, 'on.igration  Creates a arti'lar ,ire'tor= .or git reositor= ,ata i. the ,ire'tor= ,oes not alrea,= e$ist d nitialies a git reositor= insi,e the ,ire'tor= i. the reositor= ,oes not alrea,= e$ist  Provi,es a git hoo) to 'reate the PU*PAN#ES( .ile ato-ati'all= @reGire, .or reglar reositor= s=n'hroniation in 'on?n'tion 4ith Satellite 6B d %nl= a,,s Pet -o,les that are ilt to the PU*PAN#ES( (he ,etaile, ,o'-entation .or this sa-le Pet -o,le is in "ppendi? //

Content View for git Server Profile e 4ill no4 'reate 'ontent vie4s .or ea'h ali'ation t=e an, asse-le the- 4ith or 'ore il, 'ontent vie4s @'reate, earlierB to 'onstr't servert=ese'i.i' 'o-osite 'ontent vie4s/ n or,er to install a git server on to o. or alrea,= 'on.igre, 'ore il, 4e nee, to install one or -ore a,,itional so.t4are a')ages an, ,o so-e 'on.igration/ &oth shol, e'o-e art o. or 'ontent vie4 'alle, b'vagitO 4hi'h .ollo4s or na-ing 'onvention/ eOre sing the Satellite 6 content searc# .n'tionalit= to .igre ot 4hi'h versions o. git are availale in 4hi'h o. the so.t4are reositories that 4e s=n'hronie, ,ring Step '/ (he .ollo4ing ro'e,re ,es'ries ho4 to sear'h .or a a')age 'alle, bgit^O: 1/ o to Content ` Content Sear'h 2/ Sele't bPa')agesO .ro- the ,ro,o4n -en

www%red#at%com

180


!/ Enter bDe.alt %rganiation ;ie4O into the sear'h .iel, elo4 bContent ;ie4sO an, 'li') bA,,O @to get onl= reslts .ro- the original reositories an, not the 'ontent vie4s =o -ight alrea,= have at this ti-eB / Enter bgit^O into the sear'h .iel, elo4 bPa')agesO an, 'li') on bRe.resh resltsO Io shol, no4 see a age si-ilar to this s'reenshot:

(he Reslts sho4 that the git a')age is availale insi,e varios so.t4are reositories/  %n the right =o shol, see the 'oreil, 'ontent vie4 'reate, earlier @b'vosrhel7ServerOB/  . =o 'li') on the bRe, at Enterrise *in$ ServerO .iel, it e$an,s to sho4 bRe, at Enterrise *in$ 7 Server RPs $"66 7ServerO/ Io shol, e ale to see that the git version availale in or 'ore il, is git 1%=%5 /  . =o go to the bDe.alt %rganiation ;ie4 @or *irar=B =o shol, see a reositor= 'alle, bRe, at So.t4are Colle'tions .or RE* ServerO/ . =o sele't it an, then sele't bRe, at So.t4are Colle'tions RPs .or Re, at Enterrise *in$ 7 Server $"66 7ServerO =o shol, see that git version 1%& is availale via or Re, at So.t4are Colle'tions reositor=/ . 4e ,onOt nee, to se version 1/9 4e 4ol, not nee, to a,, an a,,itional so.t4are reositor= sin'e version 1/"/! is alrea,= availale throgh or 'ore il, 'ontent vie4/


181

www%red#at%com

n oth s'enarios or Pet 'on.igrations shol, e ale to han,le oth versions o. git/ &eing ale to han,le oth versions -eans that Satellite 6 -st e ale to ,eal 4ith the ,i..eren'e et4een the installation o. an RP @4hi'h is art o. Re, at Enterrise *in$B an, the sage o. Re, at So.t4are Colle'tions/ n or ACE s'enario 4eOve ,e'i,e, to se the ne4er version o. git 1/9/ &asi'all= the ali'ationse'i.i' 'ontent vie4 .or or git server -st let =o:    

a''ess an, enale the Re, at So.t4are Colle'tions reositor= install the git r- a')age 'on.igre a git reositor= @i. one ,oes not alrea,= e$istB rovi,e htt a''ess to the git reositor= to allo4 reglar 'ontent s=n'hroniation

E$'et .or the 'ontent rovisioning o. the Re, at So.t4are Colle'tions reositor= all other tas)s are ,one insi,e the Pet -o,le 'reate, earlier/

4reating t#e content view 1/ 4reate a content view 'alle, b'vagitO .ollo4ing or na-ing 'onvention an, 'li') Save/

www%red#at%com

18'


'% "dd t#e Red Hat Software 4ollection Repositor-% d n the s'reenshot elo4 4eOve sele'te, the 'orreson,ing ro,'t to shorten the list o. availale reositories:

d Sele't the reositor= an, 'li') on bA,, ReositoriesO/ No4 the entire 'ontent o. the Re, at So.t4are Colle'tions reositor= is availale throgh this 'ontent vie4/

5% 2imit t#e content availa*ilit- to ust git packages *- creating a filter and a rule, d Cli') on bI- ContentO an, b#iltersO/ (here shol, e no .ilter at this ti-e/ d Cli') on the +Ne4 #ilter tton an, .illin a na-e in or 'ase bgita')agesonl=O/ d Sele't Content (=e bPa')ageO an, #ilter (=e bn'l,eO an, a,, a ,es'rition as in the e$a-le elo4/ d Cli') Save/


185

www%red#at%com

. =o enter bgitO in the Pa')ages .iel, a list o. all a')ages -at'hing this string ,isla=s:

@arning, t is not enogh to sele't a arti'lar a')age liste, in the s'reenshot aove/ . =o sele't the git19gitall a')age an, tr= to se the 'ontent =o 4ill noti'e that the installation o. git .ails ,e to -issing ,een,en'ies/ As e$laine, in the 4ontent $iew

www%red#at%com

188


Recommendations 'hater .ilters ,o not resolve ,een,en'ies/ (o .igre ot 4hi'h ,een,en'ies a arti'lar a')age has start 4ith a 'ontent vie4 4ithot .ilters an, note the a,,itional a')ages that have een installe, .or ,een,en'= reasons/ A.ter that =o 'an a,at =or .ilter rles a''or,ingl=either = sing 4il,'ar,s or = 'reating a,,itional .ilter rles .or ea'h a,,itional ,een,en'=/ A.ter testing it sing the 'ontent vie4 4ithot a .ilter 4eOve noti'e, that all ,een,en'ies -at'h the .ollo4ing attern: git19^/ (here.ore 4e ,i, not sele't a arti'lar ite- in the list o. a')ages t entere, the attern in the Pa')age Na-e .iel,/ Sin'e -ore than one a')age is 'overe, = this attern 4e leave Detail .iel, set to bAll ;ersionsO an, 'li') the +A,, tton/ (hogh in or s'enario it is not 'riti'al @sin'e 4e onl= have one reositor=B =o shol, -a)e a reglar hait o. se'i.=ing the a..e'te, reositories in the 'orreson,ing ta/ %ther4ise this .ilter rle alies to all reositories elonging to this 'ontent vie4/ n short other reositories @to 4hi'h =o ,onOt 4ant to al= .iltersB are also a..e'te, = this n'l,e .ilter/ . the= ,onOt rovi,e the a')age@sB ,e.ine, in or .ilter rle none o. the a')ages insi,e these other reositories are availale to hosts asso'iate, 4ith this 'ontent vie4/ #or .rther ,etails see 'hater 4ontent $iew Recommendations/ / 4lick on t#e T"ffected repositoriesU ta* and select t#e option, b(his .ilter alies onl= to a sset o. reositories in the 'ontent vie4/O Sele't the Re, at So.t4are Colle'tions reositor=/ . 4e 4ere to a,, other reositories to this 'ontent vie4 later in its li.e'='le the .ilter rle 4ol, still e vali,:


18(

www%red#at%com

5/ "dd t#e Puppet modules created earlier% Cli') the bPet o,lesO ta an, then 'li') the +A,, Ne4 o,le tton/ Io shol, see the -o,le 'alle, git in the list o. availale Pet -o,les/ . =o have several Pet -o,les =o 'an se the .ilter .iel,/ Sele't git -o,le an, 'li') bSele't versionO/ Sele't bUse *atest versionO to avoi, having to ,ate the .ilter rle ea'h ti-e =o ,ate the -o,le/

Pu*lis#ing t#e 4ontent $iew No4 4eOve .inall= 'on.igre, or 'ontent vie4 an, 'an lish it/ www%red#at%com

186


1/ Cli') the Plish Ne4 ;ersion tton/ 2/ Provi,e a ,es'rition/ !/ Cli') Save/ A.ter the 'ontent vie4 has een s''ess.ll= lishe, it is availale in the *irar= stage/ / Use ha--er C* to e$e'te the .ollo4ing 'o--an, to 'reate the 'ontent vie4 an, lish it: ha--er 'ontentvie4 'reate na-e 3'vagit3 X ,es'rition 3(he ali'ation se'i.i' 'ontent vie4 .or git/3 X organiation 3%R3  a,, the RSC* reo ls .ilter .or git a')ages onl= ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X na-e 3'vagit3 X reositor= HRe, at So.t4are Colle'tions RPs .or Re, at Enterrise *in$ 7 Server $"66 7ServerH X ro,'t HRe, at So.t4are Colle'tions .or RE* ServerH ha--er 'ontentvie4 .ilter 'reate t=e r- na-e Hgita')agesonl=H X ,es'rition H%nl= in'l,e the git r- a')agesH in'lsiontre X reositories HRe, at So.t4are Colle'tions RPs .or Re, at Enterrise *in$ 7 Server $"66 7ServerH X 'ontentvie4 3'vagit3 organiation 3%R3 ha--er 'ontentvie4 .ilter rle 'reate na-e Hgit19^H X 'ontentvie4 3'vagit3 X 'ontentvie4.ilter Hgita')agesonl=H organiation 3%R3  a,, Pet -o,les .ro- %R ro,'t reo to this C; ha--er 'ontentvie4 et-o,le a,, na-e git X 'ontentvie4 3'vagit3 organiation %R  no as=n' an=-ore 4e nee, to 4ait ntil its lishe, to 'reate, the CC; ha--er 'ontentvie4 lish na-e 3'vagit3 organiation 3%R3

As e$laine, in the 'ontent vie4 li.e'='le overvie4 'hater 4e ,o not nee, to ro-ote this ali'ationse'i.i' 'ontent vie4 to other li.e'='le stages sin'e 4e onl- promote t#e final composite content view @'onsisting o. oth the ali'ationse'i.i' an, 'oreil, 'ontent vie4sB throgh the 'orreson,ing li.e'='le environ-ent ath/ &t .irst 4e nee, to 'reate the 'o-osite 'ontent vie4/

Composite Content View for the gitserver Role


189

www%red#at%com

1/ Cli') bContentO ` bContent ;ie4sO/ 2/ Cli') +Create Ne4 ;ie4/ #ollo4ing or na-ing 'onvention 4e .illin b''vin.ragitserverO in the Na-e an, *ael .iel,s an, rovi,e a ,es'rition/ (his ti-e 4e 'he') the bCo-osite ;ie4O sele't o$:

!/ Sele't the t4o 'ontent vie4s to asse-le together: the b'vagitO 'ontent vie4 'reate, earlier an, the b'vosrhel7ServerO 'ore il, 'ontent vie4 'reate, ,ring Step (/ . there are alrea,= -ltile versions availale .or these 'ontent vie4s sele't the aroriate @roal= ne4estB one an, 'li') +A,, Content ;ie4s/ Io 'an ,ole 'he') i. =oOve sele'te, the right 'ontent vie4s an, versions = 'li')ing the b*ist  Re-oveO ta/ %r sa-le s'enario alrea,= has a version 2/0/ (here.ore 4e have sele'te, a version 2/0 .or or 'ore il, 'ontent vie4:

www%red#at%com

18=


/ Cli') the Plish Ne4 ;ersion tton .ill in a ,es'rition an, 'li') Save/

&e'ase 4e nee, *ot# a 'ontent vie4 D an, a 'ontent vie4 version D to asse-le -ltile 'ontent vie4s together into a 'o-osite 'ontent vie4 an, 4e need the 'ontent vie4 version D again to ro-ote it 4eOve 4ritten the .ollo4ing .n'tion to ,eter-ine the -ost 'rrent version D o. a 'ontent vie4: .n'tion getlatestversion \ C;D@ha--er 'sv 'ontentvie4 list na-e 1 organiation \%R]  gre vi HContent ;ie4 DH  a4) #HH H\rint 1]H B ;Djha--er 'ontentvie4 version list 'ontentvie4i, \C;D]  a4) #HH H\rint 1]H  sort n  ta'  hea, n 1j e'ho ;D


18&

www%red#at%com

retrn 0 ]

. 4e ass-e that 4e 4ant to se all the -ost 'rrent versions o. the inherent 'ontent vie4s the .ollo4ing 'o--an, ,eter-ines the version Ds o. oth the 'ore il, an, git ali'ation 'ontent vie4s an, ses the- to 'reate an, lish a 'o-osite 'ontent vie4: RE*7C&;Djgetlatestversion 'vosrhel7Serverj APPC;Djgetlatestversion 'vagitj ha--er 'ontentvie4 'reate na-e 3''vin.ragitserver3 X 'o-osite ,es'rition 3CC; .or n.ra git server3 X organiation %R 'o-onenti,s \RE*7C&;D]\APPC;D] ha--er 'ontentvie4 lish na-e 3''vin.ragitserver3 organiation 3%R3

A.ter it is s''ess.ll= lishe, the 'o-osite 'ontent vie4 is availale in the *irar= an, 'an e ro-ote, to or Dev stage/ Cli') the Pro-ote tton an, sele't the bDevO stage in or ,e.alt li.e'='le environ-ent ath @4hi'h is se, .or all in.rastr'tre servi'esB:

Cli') the Pro-ote ;ersion tton/ Using ha--er C* =o nee, to e$e'te the .ollo4ing 'o--an, to ro-ote the 'o-osite 'ontent vie4 to stage Dev:

www%red#at%com

1(0


C;D@ha--er 'sv 'ontentvie4 list na-e b''vin.ragitserver organiation \%R]  gre vi HContent ;ie4 DH  a4) #HH H\rint 1]H B ;Djgetlatestversion ''vin.ragitserverj ha--er 'ontentvie4 version ro-ote organiation 3%R3 X 'ontentvie4i, C;D X toli.e'='leenviron-ent DE; X i, ;D as=n'

Io have no4 s''ess.ll= ro-ote, the 'o-osite 'ontent vie4 to or Dev stage so that it 'an e teste, on s=ste-s asso'iate, 4ith this li.e'='le environ-ent an, 'o-osite 'ontent vie4/ (here.ore 4e nee, to 'reate a,,itional host gros/ &e.ore 'reating those 4e 4ill se the sa-e ro'e,re to 'reate a .e4 other 'ontent vie4s an, 'o-osite 'ontent vie4s/

Sam&"e A&&"ication 91 Container Host %r ACE E-erging (e'hnologies @E(B Deart-ent investigates ne4 te'hnologies an, their otential to i-rove the e..i'ien'= or e..e'tiveness o. ACE ( an, &siness/ Containers are one o. the -ost e$'iting te'hnolog= ,evelo-ents in re'ent =ears/ Containers rovi,e ali'ation ortailit= .a'ilitate -o,ern ali'ation ,esign 'on'ets li)e -i'roservi'es an, sort agile ,evelo-ent an, Dev%s/ Re, at has een at the .ore.ront o. ringing 'ontainer te'hnolog= to the enterrise 4ith or e$tensive ,evelo-ent 4or) on ro?e'ts li)e *in$ Do')er an, Lernetes/ Container te'hnologies s'h as Do')er 'an rovi,e tre-en,os vale on their o4n t to trl= enale innovation at s'ale it -st e ,elivere, an, -anage, as art o. an ato-ate, or'hestrate, an, intelligent s=ste-/ Crrentl= the E-erging (e'hnolog= ,eart-ent is investigating i. an, ho4 'ontainer te'hnolog= 'an sort the ne4 ACE 4e sho ali'ation 4hi'h is 'rrentl= n,er ,evelo-ent/ ACE E( is ri-aril= loo)ing .or a soltion that sorts the .ollo4ing goals:    

A''elerates ,evelo-ent an, ,eliver= Provi,es .or e..i'ient se o. in.rastr'tre ives ,eveloers 'hoi'e %..ers -ltile intera'tion -o,els

A 'rrent .avorite o. this investigation is the ne4 Re, at %enShi.t Enterrise ;ersion !: htts: 444/re,hat /'o- ente'hnologies'lo, 'o-tingoenshi.t (o start e'o-ing .a-iliar 4ith the n,erl=ing ase te'hnologies ACE E( has as)e, the S=ste-s Engineering tea- to rovi,e a 'ole o. test s=ste-s that 'an a't as si-le a 'ontainer host ase, on Do')er te'hnolog= @4hi'h is in'l,e, in Re, at Enterrise *in$ 7B/ refarc#)feed*ack+red#at%com

1(1

www%red#at%com

n or,er to rovision 'ontainer hosts in an ato-ate, .ashion ACE S=ste-s Engineering has rovi,e, three ite-s: 1/ a Pet -o,le to 'on.igre the 'ontainer host a''or,ingl= 2/ a 'ontent vie4 'ontaining the reGire, so.t4are a')ages an, 'on.igration !/ a ostrovisioning hoo) to integrate ne4 hosts ato-ati'all= into the Satellite 6 'o-te resor'es

Sample Puppet Module for Docker Host Compute Resource (his -o,le is se, to 'on.igre a RE*7 host to e'o-e a Satellite 6 'o-te resor'e .or the Do')er t=e/ t:  nstalls the reGire, Do')er a')age an, ensres that it is ,ate, i. a ne4er version is availale = sing the blatestO otion @4hi'h 'an e overri,,en = sing a S-art Class Para-eterB  Con.igres the /etc/sysconfig/docker 'on.igration .ile a''or,ing to the ,o'-entation in the Satellite 6 User i,e  Starts the Do')er ,ae-on an, enales the ,ae-onOs ato-ati' starting #or -ore ,etaile, ,o'-entation aot this sa-le Pet -o,le see "ppendi? //

Content View for Docker Profile (he .ollo4ing 'ontent vie4 has een 'reate, .or the Do')er ro.ile: 4$ Aame

'va,o')er

4$ 2a*el

'va,o')er

4$ Description

Do')er ost Content ;ie4

4omposite 4$V

no

>. Repositories

Re, at Enterrise *in$ 7 Server E$tras RPs

Puppet .odules

,o')er

in'l,e: ,o')er^

2ife)c-cle Env Pat#

DE; ` A ` PR%D

(he .ollo4ing ha--er 'o--an,s 'reate the 'ontent vie4 a,, the 'orreson,ing Pet www%red#at%com

1('


-o,le to it an, lish the 'ontent vie4: ha--er 'ontentvie4 'reate na-e 3'va,o')er3 X ,es'rition 3Do')er ost Content ;ie43 X organiation 3%R3 ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X reositor= HRe, at Enterrise *in$ 7 Server  E$tras RPs $"66 7ServerH X na-e 3'va,o')er3 ro,'t HRe, at Enterrise *in$ ServerH ha--er 'ontentvie4 .ilter 'reate t=e r- na-e H,o')era')ageonl=H X ,es'rition H%nl= in'l,e the ,o')er r- a')ageH in'lsiontre X organiation 3%R3 'ontentvie4 3'va,o')er3 X reositories HRe, at Enterrise *in$ 7 Server  E$tras RPs $"66 7ServerH ha--er 'ontentvie4 .ilter rle 'reate na-e H,o')er^H X organiation 3%R3 'ontentvie4 3'va,o')er3 X 'ontentvie4.ilter H,o')era')ageonl=H  (%D% letHs tr= the latest version @no version .ilterB/ . 4e .igre ot that it ,oes not 4or) a,, a .ilter .or ,o')er r- version here or insi,e the Pet -o,le  a,, Pet -o,les .ro- %R ro,'t reo to this C; ha--er 'ontentvie4 et-o,le a,, na-e ,o')er X 'ontentvie4 3'va,o')er3 X organiation %R  lish it 4ithot sing as=n' sin'e 4e nee, to 4ait  ntil the tas) is .inishe, e.ore ro-oting it ha--er 'ontentvie4 lish na-e 3'va,o')er3 X organiation 3%R3

Composite Content View for Containerhost Role (he .ollo4ing 'o-osite 'ontent vie4 has een 'reate, .or the 'ontainerhost in.rastr'tre servi'e server role: 4$ Aame

''vin.ra'ontainerhost

4$ 2a*el


4$ Description

CC; .or n.ra Container ost

4omposite 4$V

=es: in'l,ing the .ollo4ing 'ontent vie4s: 'vosrhel7Server 'va,o')er


1(5

www%red#at%com

>. Repositories

NA

Puppet .odules

NA

NA

2ife)c-cle Env Pat#

DE; ` A ` PR%D

(he .ollo4ing ha--er 'o--an,s then 'reate the 'o-osite 'ontent vie4 lish an, ro-ote it to the li.e'='le environ-ent DE;: APPC;Djgetlatestversion 'va,o')erj ha--er 'ontentvie4 'reate na-e 3''vin.ra'ontainerhost3 X 'o-osite ,es'rition 3CC; .or n.ra Container ost3 X organiation %R 'o-onenti,s \RE*7C&;D]\APPC;D] ha--er 'ontentvie4 lish na-e 3''vin.ra'ontainerhost3 X organiation 3%R3 ;Djgetlatestversion ''vin.ra'ontainerhostj ha--er 'ontentvie4 version ro-ote organiation 3%R3 X 'ontentvie4 3''vin.ra'ontainerhost3 X toli.e'='leenviron-ent DE; X i, ;D as=n'

Post-Installation Hook for Containerhost n a,,ition to the Pet -o,le a post)installation #ook ato-ati'all= 'on.igres a ne4 host o. this t=e to e'o-e a Satellite 6 Do')er 'o-te resor'e sing a .ore-an hoo) an, the ha--er C*/ #or .rther in.or-ation see the ,o'-entation aot this hoo) in Step =/

Sam&"e A&&"ication :1 Centra" "oghost Ser'er Rs=slog, is a s=ste- tilit= that rovi,es sort .or -essage logging/ (he 'orreson,ing so.t4are a')ages are art o. Re, at Enterrise *in$/ e are sing -ltile logservers in ,i..erent environ-ents/ #or e$a-le 4e have ,e,i'ate, logservers insi,e or DJ environ-ent an, 4e are rnning ,e,i'ate, logservers .or high vol-e log.iles in or A environ-ent e'ase 4e nee, to se ,egging log levels here/ e se this as an e$a-le o. a se'ial t=e o. an ali'ation that reMuires neit#er a content view nor a composite content view / (his se'ial 'ase is vali, .or all ali'ations an, ,ae-ons that:  reGire onl= so.t4are that is alrea,= art o. or 'oreil, ,e.inition www%red#at%com

1(8


 se a -ltirose Pet -o,le that is art o. 'oreil, ,e.inition (he onl= reGire, so.t4are a')age rsyslogd is alrea,= in the 'oreil, 'ontent vie4 an, in a,,ition it is alrea,= installe, = ,e.alt sing the Pet -o,le loghost/ As ,o'-ente, in Step ( 4e have 'reate, a -ltirose Pet -o,le to -anage rs=slog log-anage-ent 'on.igration/ e are sing the sa-e -o,le to -anage oth 'lient an, server 'on.igrations/ e are also sing ,i..erent Pet 'lasses .or ea'h o. the- an, a S-art Class Para-eter to sele't the aroriate 'lass @4hi'h ,een,s on the se 'aseB/ (he onl= ite- that ,istingishes et4een a stan,ar, 'ore il, RE* server an, this role t=e is the Satellite 6 Smart 4lass Parameter / (he ,e.alt vale is set to b'lientO an, there.ore the host gro ,e.inition .or lain 'ore il,s ,oes not reGire a se'i.i' S-art Class Para-eter 'on.igration/ #or the role t=e bloghostO 4e nee, to set this S-art Class Para-eter to bserver in the 'orreson,ing host gro/ (his ara-eter is the onl= ,i..eren'e et4een these t4o host gros/ e 4ill e$lain this ara-eter t=e an, this s'enario later in Step 9/

Sam&"e A&&"ication ;1 Sate""ite  Ca&su"e &ase, on or .e,erate, set 4ith -ltile sites an, lo'ations 4e are sing a 'ole o. Re, at Satellite 6 Casles/ (here.ore 4e 'reate, a ,e,i'ate, role t=e/

Aote, &e'ase the 'asle installation ses a ,e,i'ate, installer 4e ,i, not 'reate a Puppet module .or this role t=e/

Content View for Satellite 6 Capsule Profile (he .ollo4ing 'ontent vie4 4as 'reate, .or the Satellite 6 Casle ro.ile: 4$ Aame

'va'asle

4$ 2a*el

'va'asle

4$ Description

Satellite 6 Casle Content ;ie4

4omposite 4$V

no

>. Repositories

Re, at So.t4are Colle'tions RPs RE*7 Re, at Satellite Casle 6 &eta

Puppet .odules






1((

www%red#at%com

2ife)c-cle Env Pat#

DE; ` A ` PR%D

Aote, hen this ,o'-ent 4as 4ritten Satellite 6/1 4as in &eta hase/ (here.ore 4e have se, the 'orreson,ing 'hannel/ (his nee,s to e a,ate, a.ter Satellite 6/1 A/ (he .ollo4ing ha--er 'o--an,s 'reate the 'ontent vie4 a,, the 'orreson,ing Pet -o,le to it an, then lish the 'ontent vie4: ha--er 'ontentvie4 'reate na-e 3'va'asle3 X ,es'rition 3Satellite 6 Casle Content ;ie43 X organiation 3%R3 ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X reositor= HRe, at So.t4are Colle'tions RPs .or Re, at Enterrise *in$ 7 Server $"66 7ServerH X na-e 3'va'asle3 ro,'t HRe, at So.t4are Colle'tions .or RE* ServerH e'ho e 3XnXnXne enale the Satellite 6 Casle Reo .or ^^^^&E(A^^^^ here/ 3 e'ho e 3P%S( A lease 'hange this insi,e ste6/sh to the .inal reositor=/XnXnXn3 ha--er 'ontentvie4 a,,reositor= organiation 3%R3 X reositor= HRe, at Satellite Casle 6 &eta .or RE* 7 Server RPs $"66H X na-e 3'va'asle3 ro,'t HRe, at Satellite Casle &etaH  Note: 4e ,o not se a Pet -o,le here ha--er 'ontentvie4 lish na-e 3'va'asle3 organiation 3%R3

Composite Content View for Satellite 6 Capsule Role (he .ollo4ing 'o-osite 'ontent vie4 4as 'reate, .or the 'ontainer host in.rastr'tre servi'e server role: 4$ Aame

''vin.ra'asle

4$ 2a*el


4$ Description

CC; .or Satellite 6 Casle

4omposite 4$V

=es: in'l,ing the .ollo4ing 'ontent vie4s: 'vosrhel7Server 'va'asle

>. Repositories

www%red#at%com

NA

1(6


Puppet .odules

NA

NA

2ife)c-cle Env Pat#

DE; ` A ` PR%D

(he .ollo4ing ha--er 'o--an,s 'reate an, lish the 'o-osite 'ontent vie4 an, then lish it an, ro-ote it to the li.e'='le environ-ent DE;: APPC;Djgetlatestversion 'va'aslej ha--er 'ontentvie4 'reate na-e 3''vin.ra'asle3 X 'o-osite ,es'rition 3CC; .or Satellite 6 Casle3 X organiation %R 'o-onenti,s \RE*7C&;D]\APPC;D] ha--er 'ontentvie4 lish na-e 3''vin.ra'asle3 X organiation 3%R3 ;Djgetlatestversion ''vin.ra'aslej ha--er 'ontentvie4 version ro-ote organiation 3%R3 X 'ontentvie4 3''vin.ra'asle3 X toli.e'='leenviron-ent DE; X i, ;D as=n'

Sam&"e A&&"ication <1 ACME =ebsite (he ACE li' 4esite is 'rrentl= ase, in or,Press/ &ase, on a se'rit= gi,eline .ro- the ACE ris) K se'rit= -anage-ent tea- the .ronten, an, a')en, servers are searate,/ (he .ronten, servers rn insi,e the DJ environ-ent an, the a')en, servers rn in the -ain ni'h lo'ation/ (he .ronten, art 'onsists o. Aa'he PP an, or,Press itsel./ (he ,ataase servers se, as a')en,s are ase, on =S* or ariaD&/ (here is a dedicated lifec-cle environment pat# .or the ACE 4e @'reate, ,ring Step 8B that 'onsists o. eDE; eA eUA( an, ePR%D li.e'='le environ-ents/ &e'ase the 'rrent so.t4are ,evelo-ent is ase, on &oston US the .irst t4o lifec-cle environments @e*)DE$ and @e*)" are asso'iate, to the &oston lo'ation as ,e.ine, in the relate, Satellite 6 'asle 'on.igration:


1(9

www%red#at%com

&e'ase -ost o. the ,evelo-ent an, Ga s=ste-s are non)persistent ACE has ,e'i,e, to se the Re, at Enterrise *in$ %ensta') Plat.or- as the n,erl=ing virtaliation in.rastr'tre in &oston/ (he 'on.igration o. the 'orreson,ing lo'ation 'asle an, 'o-te resor'es 4as ,o'-ente, in Step '/ (he ACE 4e ali'ation ar'hite'tre has three arts:  .ronten, 'ontent @Aa'he PP or,PressB  a')en, 'ontent @ariaD& or =S*B  oerating s=ste-  'ore il, @here: RE*7 .or oth .ronten, an, a')en,B

Sample Puppet Module for MariaDB server profile Sin'e so.t4are ,evelo-ent is ,one = ACE so.t4are ,evelo-ent ,eart-ent all so.t4are an, 'on.igration is ,esigne, an, ,eveloe, in &oston/ (he .ollo4ing Pet -o,les are insi,e the area o. resonsiilit= o. an, have een rovi,e, = the so.t4are ,evelo-ent ,eart-ent/ e are sing the stan,ar, Pet -o,le .ro- Petlas to -anage the =S* an, ariaD& ,ataases: htts: .orge/etlas/'o-etlas-=sGl (his -o,le also reGires the stan,ar, lirar= o. resor'es .or Pet -o,les stdlib0 4hi'h is art o. or 'ore il, ,e.initions/ www%red#at%com

1(=


Sample Puppet Module for ACME Web Role #ollo4ing the rolesro.iles -o,el e$laine, earlier the to la=er o. the entire ali'ation sta') has to 'ontain the role @PetB 'on.igration/ n or s'enario 4e 'reate, a -i$e, t=e -o,le that 'ontains oth: the role ,e.inition an, a ro.ile ,e.inition .or the or,Press ali'ation itsel./ (his -o,le installs an, 'on.igres the ACE 4esite ali'ation/ t allo4s s to ,istrite the ali'ation on t4o hosts one .or the .ronten, @Aa'he+PPB an, one .or the a')en, @=S*ariaD&B/ (he .ronten, ,e.inition ,oes the .ollo4ing ite-s:  nstalls the Aa'he + PP a')ages sing the stan,ar, Pet -o,le .roPetlas to -anage the Aa'he 4eserver: htts: .orge/etlas/'o-etlasaa'he  E$tra'ts the 'rrentl= latest or,Press version 4hi'h is shie, as a .ile throgh the Pet -o,le @version: /2/2B  Con.igres /ar/www/html/wp-config.php 4ith the a')en, 'onne'tion ara-eter sing the Satellite 6 S-art Class Para-eters (his -o,le also reGires the stan,ar, lirar= o. resor'es .or the Pet -o,le stdlib an, the concat -o,le 4hi'h are alrea,= art o. or 'ore il, ,e.initions/ Detaile, ,o'-entation .or this sa-le Pet -o,le is in "ppendi? //

ACME Web Config Groups Tst as 4e 'reate, or 'oreil, ,e.inition 4e nee, to asse-le the Pet 'lasses that elong to or ACE 4e roles an, 'o-ine the- 4ith a 'on.ig gro/ e ,istingish et4een the .ronten, an, a')en, ?st as 4e ,i, 4ith or 'ontent vie4 ,e.initions/ (he 'orreson,ing 'on.ig gro .or .ronten, servers 'onsists o. the .ollo4ing Pet 'lasses:


1(&

www%red#at%com

(he 'orreson,ing 'on.ig gro .or a')en, servers 'onsists o. the .ollo4ing Pet 'lasses:

www%red#at%com

160


Aote, (he reGire, ,een,en'ies stdlib an, concat have not een a,,e, to these 'on.ig gros/ o4ever =o still nee, to ensre that the= are insi,e the sa-e Pet environ-ent/ (his is ato-ati'all= ,one sin'e the= are art o. the sa-e 'o-osite 'ontent vie4/

Content View for MariaDB Profile (he .ollo4ing 'ontent vie4 has een 'reate, .or the ariaD& ro.ile: 4$ Aame

'va-aria,

4$ 2a*el

'va-aria,

4$ Description

ariaD& Content ;ie4

4omposite 4$V

no

>. Repositories

Re, at So.t4are Colle'tions RPs .or RE*6

Puppet .odules

-=sGl



2ife)c-cle Env Pat#

 @re-ains in *irar=B

(he .ollo4ing ha--er 'o--an,s 'reate the 'ontent vie4 a,, the 'orreson,ing Pet -o,le to it an, lish the 'ontent vie4: ha--er 'ontentvie4 'reate na-e 3'va-aria,3 X ,es'rition 3ariaD& Content ;ie43 X organiation 3%R3  sin'e ariaD& is in'l,e, in RE*7 @an, there.ore in RE*7 Core &il,B 4e onl= nee, to a,, RSC* i. 4e se RE*6 i. Y 3RE*6ENA&*ED3 eG 1 [ then ha--er 'ontentvie4 a,,reositor= na-e 3'va-aria,3 X reositor= HRe, at So.t4are Colle'tions RPs .or Re, at Enterrise *in$ 6 Server $"66 7ServerH X ro,'t HRe, at So.t4are Colle'tions .or RE* ServerH X organiation 3%R3 .i  ,o4nloa, etlas -=sGl -o,le an, sh it to ACE Pet Reo 4get % t-etlas-=sGl!//0/tar/g htts:.orgeai/etlas/'o-v!.ilesetlas-=sGl!//0/tar/g


161

www%red#at%com

 a,, these -o,les to ACE Pet reo ha--er reositor= loa,'ontent organiation MACE X ro,'t ACE na-e 3ACE Pet Reo3 X ath t-etlas-=sGl!//0/tar/g ha--er 'ontentvie4 et-o,le a,, 'ontentvie4 'va-aria, X na-e -=sGl organiation %R ha--er 'ontentvie4 lish na-e 3'va-aria,3 organiation 3%R3

Content View for the WordPress profile (he .ollo4ing 'ontent vie4 has een 'reate, .or the or,Press ro.ile: 4$ Aame

'va4or,ress

4$ 2a*el

'va

4$ Description

or,Press Content ;ie4

4omposite 4$V

no

>. Repositories

none @i. or,Press r- se,: EPE* 7B

Puppet .odules

a'-e4e aa'he

 @re-ains in *irar=B

(he .ollo4ing ha--er 'o--an,s 'reate the 'ontent vie4 a,, the 'orreson,ing Pet -o,le to it an, lish the 'ontent vie4: ha--er 'ontentvie4 'reate na-e 3'va4or,ress3 X ,es'rition 3or,ress Content ;ie43 X organiation 3%R3  ,o4nloa, etlas -=sGl -o,le an, sh it to ACE Pet Reo 4get % t-etlasaa'he1//1/tar/g htts:.orgeai/etlas/'o-v!.ilesetlasaa'he1//1/tar/g  a,, these -o,les to ACE et reo ha--er reositor= loa,'ontent organiation \%R] X ro,'t ACE na-e 3ACE Pet Reo3 X ath t-etlasaa'he1//1/tar/g

www%red#at%com

16'


 a,, et -o,les .ro- %R ro,'t reo to this C; ha--er 'ontentvie4 et-o,le a,, na-e aa'he X 'ontentvie4 'ontentvie4 3'va4or,ress3 3'va4or,ress3 X organiation organiati on %R  role se'i.i' -o,le .or a'-e4e @in'l,es 4or,ress ro.ileB ha--er 'ontentvie4 et-o,le a,, na-e a'-e4e X 'ontentvie4 'ontentvie4 3'va4or,ress3 3'va4or,ress3 X organiation organiati on %R ha--er 'ontentvie4 lish na-e 3'va4or,ress3 3'va4or,r ess3 organiation organiati on 3%R3

Composite Content View for ACME Web Role (he .ollo4ing 'o-osite 'ontent vie4 has een 'reate, .or the ACE e servi'e server role: 4$ Aame

''via'-e4e

4$ 2a*el

''via'-e4e

4$ Description

CC; .or ACE in'l,ing or,Press an, ariaD&

4omposite 4$V

=es: in'l,ing the .ollo4ing 'ontent vie4s: 'vosrhel7Server 'va-aria, 'va4or,ress

>. Repositories

NA

Puppet .odules

NA

NA

2ife)c-cle Env Pat#

eDE; ` eA ` eUA( ` ePR%D

(he .ollo4ing ha--er 'o--an,s 'reate the 'o-osite 'ontent vie4 lish it an, ro-ote it to the li.e'='le environ-ent DE;: APP1C;Djgetlatestversion 'va-aria,j APP2C;Djgetlatestversion 'va4or,ressj ha--er 'ontentvie4 'reate na-e 3''via'-e4e3 'o-osite X ,es'rition ,es'riti on 3CC; .or ACE in'l,ing or,Press an, ariaD&3 X 'o-onenti,s \RE*7C&;D]\APP1C;D]\ \RE*7C&;D] \APP1C;D]\APP2C;D] APP2C;D] X


165


organiation organiati on %R ha--er 'ontentvie4 lish na-e 3''via'-e4e3 organiation 3%R3 ;Djgetlatestversion ''via'-e4ej ha--er 'ontentvie4 version ro-ote organiation 3%R3 X 'ontentvie4 'ontentvi e4 3''via'-e4e3 3''via' -e4e3 X toli.e'='leenvir toli.e' ='leenviron-ent on-ent eDE; X i, ;D as=n'

Cli') on Content ` Content ;ie4s to see a long list o. 'ontent vie4s an, 'o-osite 'ontent vie4s/

(o list all the 'ontent vie4s 4eOve 'reate, so .ar se ha--er 'o--an,s:

Aote, (his list rovi,es so-e a,,itional in.or-ation that -ight e relevant to =o/ &esi,es the www%red#at%co www%red#at%com m

168


'ontent vie4 t=e @'o-osite tre or e-t=B =o 'an also see 'ontent vie4s that have no reositor= Ds asso'iate, 4ith the- @ composite 'ontent vie4s have no reositories asso'iate, 4ith the- = ,e.altB/ (hese are or 'ontent vie4s that se the 'ore il, reositories .or so.t4are @.or e$a-le ariaD& as art o. Re, at Enterrise *in$B an, that onl= 'ontain Pet -o,les/


16(


Step 7: Automate your provisioning A high ,egree o. ato-atiation is one o. the )e= .a'tors .or s''ess.ll= estalishing =or Stan,ar, %erating Environ-ent @S%EB/ (he Re, at Satellite Server 6 o..ers -an= .eatres that hel =o to ato-ate =or rovisioning:  Para-eteriation Para-eteriation .or rovisioning rovisioning te-lates te-lates an, -anaging 'on.igrations 'on.igrations @i-roves @i-roves the resailit= o. rovisioning te-lates an, Pet 'lasses to a'hieve ,i..erent 'on.igrations ase, on the ara-eters at a host levelB  Provisioning Provisioning (e-lates @.or e$a-le e$a-le a 'sto-iale 'sto-iale Li')start Li')start .or .or natten,e, natten,e, installationsB  Con.igration Con.igration -anage-ent -anage-ent 4ith Pet Pet @,e.ines @,e.ines the the target target state o. a host host throgh throgh its entire li.e'='leB  ost ro ros s .or stan, stan,ar,i ar,ie, e, rov rovisio isioning ning o. server server roles roles &= the ti-e =o .inish this se'tion the Re, at Satellite Server 4ill e 'on.igre, to rovision the Core =uild ase, ase, on a Re, at Enterrise *in$ 7 Server 4ith the .ollo4ing sa-le 'on.igration:  Csto Csto-i -ie, e, artit artitio ion n la=o la=ott  A,,itio A,,itional nal RP RP a')age a')ages s to the 'ore 'ore a')a a')age ge gro gro throgh throgh P Pet et  Stati' Stati' net4o net4or) r) 'on.i 'on.ig grat ration ion  Sa-le Sa-le servi' servi'e e 'on.ig 'on.igrat ration ion .or .or nt nt an, re-ote re-ote loggi logging ng  A host host 'on.ig 'on.igrat ration ion .or -onit -onitorin oring g 4ith ai$ ai$ as an e$a-le e$a-le n this 'hater 4e 4ill set  all reGire, Satellite 6 entities to ,elo= all the sa-le servi'es an, ali'ations 4e have 'reate, in the revios t4o stes:       

A lain lain %S  Cor Core e &il &il, , serv server er A serve serverr a'ti a'ting ng as as a 'ont 'ontain ainer er host host A server server a'ting a'ting as a Satelli Satellite te 6 'asle 'asle server server A serve serverr a'ti a'ting ng as a git git serv server er A serve serverr a't a'ting ing as a log loghos hostt A serve serverr a'ting a'ting as a @,ataas @,ataaseB eB a')en, a')en, server server .or .or ACE ACE 4e ali' ali'atio ation n A server a'ting as a @or,Pres @or,Pressase,B sase,B .ronten, server .or ACE 4e ali'ation ali'ation

/ro'isioning Recommendations (he server rovisioning 'on.igration is one o. the -ost o4er.l an, 'o-le$ 'on.igrations in Re, at Satellite 6/ (he ri-ar= goal is to rovision ne4 servers ase, on a re,e.ine, 'on.igration 4ith the


166


highest ossile ,egree o. stan,ar,iation an, ato-ation as 4ell as  to the highest ossile astra'tion la=er @t=i'all= the ali'ationB/ Even i. rovisioning o. the oeration s=ste- @'ore il,B is the -ost 'o--on se 'ase in -an= 'sto-er environ-ents Re, at Satellite rovi,es the 'aailit= to rovision servers that are rea,= to e se, in ro,'tion/ (his 'aailit= in'l,es oth:  (he rovisioning rovisioning o. oerating oerating s=ste-s s=ste-s an, an, the ali'ations ali'ations rnning rnning on on to o. o. the %S  (he integr integratio ation n into into the entire entire -anage -anage-en -entt tool tool 'hain 'hain (his rovisioning ro,'es 4hat 4e 'all 3rea,=2rn s=ste-s/3 (hese s=ste-s are 'o-letel= 'on.igre, an, 'an e se, in ro,'tion an, test environ-ents i--e,iatel=/ Even i. -an= 'sto-ers have not i-le-ente, these 'aailities =et =o 4ol, nee, to have thein la'e in a 'lo, s'enario 4here servers @an, ri-aril= ali'ations rnning on to o. the-B 'an e a''esse, throgh a sel.servi'e ortal/ (he ,iagra- elo4 illstrates the asi' 4or).lo4 o. this enhan'e, rovisioning/ (he -ain goals o. this .ll= ato-ate, server rovisioning are:


169




(o e al ale e to rov rovisi ision on a serv server er 4ith 4ithin in a .e4 -intes

 (o in'l,e the %S @aaSB an, ali'ation lat.or- @PaaSB

1



Not Not to to reG reGir ire e -an -ana all inte interve rventi ntion on



Not Not to reGir reGire e -an -anal al os ost tro' ro'es essin sing g



(o have have har, har,4ar 4are e  virt virta ali liati ation on se'i.i' a,atations han,le, ato-ati'all=



(o int integ egrat rate e the the s=ste s=ste- ..ll ll= = integrate, into the (S tool 'hain



(o hav have e the the s=ste s=ste- ttes este, te, an, an, ro,'tion rea,= a.ter reoot

(he e..ort reGire, to i-le-ent s'h a .ll= ato-ate, rovisioning -ight e e$tensive/ &t in ter-s o. s=nerg= it 'an e it: 4hile initial rovisioning -ight e a sel,o-l= se, se 'ase at least in ro,'tion the te'hnolog= 'ore is si-ilar to three other se 'ases:

1 ^ @Ali'ation ,elo=-ent is not the ri-ar= target o. Satellite 6 even thogh it is te'hni'all= .easile/ nstea, 4e re'o--en, that =o se a ,e,i'ate, PaaS tool .or this se 'ase s'h as Re, at %enShi.t EnterriseB www%red#at%co www%red#at%com m

16=


 Disaster Recover- Procedures, (he -ain ,i..eren'e et4een initial rovisioning an, er.or-ing a restore is that the ,ata restore 'ol, e triggere, at the en, o. rovisioning/  S-stem 4loning, *ets =o 'reate ro,'tion 'lones @.or e$a-le .or testing 'hanges an, rero,'ing in'i,entsB/ (he -ain ,i..eren'es are the environ-entse'i.i' a,atations @.or e$a-le ,i..erent 'onne'tion 're,entials .or ss=ste-sB 4hi'h shol, e 'overe, an=4a= in the server 'on.igration e'ase the 'ontent @vie4B is ro-ote, n'hange, throgh the ,i..erent li.e'='le environ-ents @see 'hater 4ontent $iew Recommendations .or .rther ,etailsB  D-namic #oriontalC Scale)Out : *ets =o a,, a,,itional  si-ilar s=ste-s o. the sa-e t=e to a'hieve horiontal s'alailit=/ (he -ain ,i..eren'e is that the ne4 s=stehas to e a,,e, 4ith a loa, alan'er in .ront o. it/ . a loa, alan'er has een se, alrea,= this -ight e alrea,= 'overe, in the ,elo=-ent 'on.igration/

n or,er to rese @initialB rovisioning 'aailities .or restore  ,isaster re'over= ro'e,res 4e re'o--en, that =o se a slit artitioning s'he-a to ,ivi,e et4een the so.t4are an, ,ata ,is)s/ e 4ill e$lain this in the Partition (ales se'tion elo4/ &e'ase -ost o. the ato-ation ,is'sse, in this soltion gi,e relies heavil= on a 4or)ing )i')start 'on.igration ever- c#ange in all related o*ects s#ould *e considered carefull-


16&

www%red#at%com

and tested *efore -ou appl- it to t#e production configuration / (he .ollo4ing se'tion rovi,es so-e gi,an'e on ho4 to re,'e the 'o-le$it= o. the rovisioning 'on.igration an, ho4 to -aintain it e..i'ientl=/ (he 'o-lete installation an, 'on.igration o. the s=ste- -ight not e enogh .or it to e se, in ro,'tion/ Io -st also integrate t#is s-stem into t#e s-stem management tool c#ain ri-aril= .o'sing on -onitoring a') s'he,ling in'i,ent -anage-ent an, so on/ Se'i.i'all= this integration -eans that the ne4 host -st e a,,e, to or -onitoring 'on.igration in a,,ition to the -onitoringrelate, so.t4are installation an, the 'on.igration o. the 'lient/ (his integration -ight also in'l,e re-ote e$e'tions rnning as hoo)s on different servers t#an t#e recentl- provisioned #ost @.or e$a-le on the a') -anage-ent serverB/ n or soltion gi,e 4eHre ,e-onstrating this integration ase, on the -onitoring se 'ase/ #rther enhan'e-ents are liste, in Step 10/ (he ri-ar= goal there.ore is to reduce t#e total num*er of kickstart configurations to an a*solute minimum/ (he .le$iilit= an, ,=na-i' a,otions @oth ara-eter ase, or ato-ati'all= ,ete'te,B hel to 'over as -an= otions an, variants as ossile 4ithin one single )i')start .ile se, = all servers/ %n the other han, an, given the i-ortan'e o. rovisioning .or all the  se 'ases -entione, aove 4e re'o--en, that =o 'reate at least one test clone .or ea'h ro,'tion )i')start .ile/ Use this test clone to validate c#anges *efore appl-ing t#em to a configuration used in production / (he vali,ation o. a ne4er version o. a )i')start 'on.igration shol, test as otions as ossile that are 'overe, = the rovisioning 'on.igration @s'h as ,i..erent har,4are an, virtaliation lat.or-s an, ,i..erent ali'ation t=esB/ Re, at Satellite shis 4ith a lot o. ,i..erent te-lates .or rovisioning that -ight alrea,= e sufficient for man- customer environments / &e.ore =o 'lone an, a,at these te-lates 4e re'o--en, that =o veri.= that =o a'tall= nee, to a,at the-/ n -ost 'ases =o -a= onl= nee, to 'reate one or t4o a,,itional 'sto- te-lates/ #or -aintenan'e reasons it is easier to a,, 'sto- te-lates @4hi'h -ight e ase, on the re'on.igre, ones  'lones o. the-B than to a,at the original te-late/ As an alternative to a,,ing .n'tionalit= to the )i')start .iles an, te-lates 'onsi,er adding t#is functionalit- to t#e content managed inside content views instea,/ Step ( otlines that the 'ore il, 'an 'ontain -ost o. these 'aailities that -ight e easier to -aintain e'ase the 'ontent vie4 is sing the inherent li.e'='le -anage-ent 'aailities/ See Step ( .or -ore ,etails/ (hogh it is -'h easier to a,, a M=- = install Byourpackage line into )i')start than it is to 4rite a Pet -o,le an, a,, it to a 'ontent vie4 the -ain ,isa,vantage o. a,,ing this line is that then it alies onl= to s=ste-s that are rovisione,/ . =o 4ant to a,, the reGire,

www%red#at%com

190


a')ages to an alrea,= e$isting server =o 4ol, have to rerovision it/ Sre =o 'ol, -anall= a,, the a')ages later sing the eU t that otion ,e.eats the goal o. reeatailit=/ (o avoi, an nne'essar= 'o-le$it= in 'ontent vie4s an, host gros 4e re'o--en, that =o make t#e provisioning configuration fle?i*le enoug# to deal wit# all options t#at are primaril- *ased on t#e different #ardware and virtualiation platforms used in -our environment/ ost o. the- 'an e ato-ati'all= ,ete'te, an, =o 'an se the 'on,itional state-ents in the )i')start 'on.igration to a,at ho4 these a'tions are ato-ati'all= e$e'te,/ . =o are sing ,i..erent har,4are lat.or-s that reGire ,i..erent artition tales @.or e$a-le /de/sda .or stan,ar, har,4are t /de/cciss .or ol,er P serversB 4e re'o--en, that =o 'reate a ,=na-i' environ-ent that han,les all these otions instea, o. 'reating ,i..erent )i')start 'on.igrations .or all o. the-/ Re, at Satellite 'rrentl= onl= rovi,es a version 'ontrol that in'l,es ,i.. an, 'hangereverting 'aailities .or in,ivi,al te-lates/ . =o a,at a te-late =o 'an vie4 the ,i..s an, revert 'hanges = sele'ting the te-late n,er ost ` Provisioning (e-lates ` Ior (e-late an, 'li')ing on the istor= ta:

. =o are sing a,van'e, rovisioning sets that in'l,e a lot o. -o,i.ie, an, enhan'e, te-lates 4e re'o--en, that =o a')  an, version 'ontrol these ite-s on a reglar refarc#)feed*ack+red#at%com

191

www%red#at%com

asis/ Either e.ore i-orting the- into Satellite or sing the AP to gather ,o4nloa, an, store all relate, o?e'ts in a revision 'ontrol s=ste-/

/ro'isioning Methods Satellite Server 6 o..ers -ltile 4a=s to oot a host into the Ana'on,a installer to initiate the rovisioning hase/  P:E (he Satellite Server ato-ati'all= -anages a Preoot e8e'tion Environ-ent @P8EB throgh the Re, at Casle .eatres @(#(P an, DCPB/ (he DCP Server assigns the host its net4or) 'on.igration an, ,ire'ts the host to the (#(P Server/ &= ,e.alt the (#(P Server is -anage, throgh the >ickstart default PD*)inu4 te-late to 'reate a t.t oot re'or, that oints the host to its installation 'on.igration/  Boot /SO As an alternative =o 'an se &oot S%s/ &= ,e.alt &oot S%s are generate, 4ith the =oot disk iPD* - host te-late/ (o generate a host se'i.i' &oot S% navigate to @a.ter =o have alrea,= 'reate, the ne4 host entr=B: osts ➤ +ll osts ➤ sele't host to generate oot iso .or ost &Ename& image

➤ sele't

=oot disk ➤ sele't

Aote, &oot S%s have the ,isa,vantage that the= have to e -anall= loa,e, to a Compute Resource or to the &oar, anage-ent Controller o. a h=si'al server in or,er to rovision a host/  /mage Based Another -etho, is #mage-based rovisioning/ (his is onl= availale 4hen a host is rovisione, throgh Compute Resources/ #mages that are availale in the i-age store on a Co-te Resor'e have to e .lagge, so that =o 'an se the- 4ith the Re, at Satellite/ (4o ,i..erent rovisioning t=es are availale 4hen i-agease, rovisioning is eing se,/  (=e .inish @Satellite Li')start De.alt #inishB A 'sto- ostinstallation s'rit that reGires the Re, at Satellite Server to www%red#at%com

19'


'onne't to the host via SS in or,er to e$e'te the s'rit/  (=e ser,ata @Satellite Li')start De.alt User DataB hen a Compute Resource li)e %enSta') or EC2 is se, the user_data te-late 'an e se, .or a rolese'i.i' 'on.igration a.ter i-age ,elo=-ent/ (he user_data te-late is a ost s'rit 4here the #ost 'onne'ts to the Re, at Satellite Server to register itsel. 4ith the assigne, a'tivation )e= to get a''ess to its 'ontent/ (he ser,ata t=e has a -an,ator= reGire-ent .or ser,ata 'aale i-ages @.or e$a-le 'lo,init or another -eta,atare'eiving s'ritB/

Aote, (his -etho, is 'overe, in the S'enario CB i-le-entation at the en, o. Step ' o. this ,o'-ent/ (o assign i-ages to e se, = Re, at Satellite .or rovisioning go to: 1/ #nfrastructure ➤ Compute Resources ➤ sele't the Co-te Resor'e that 'ontains the i-age 2/ Navigate to the #mages ta ➤ !ew #mage !/ #ill in the 'orreson,ing in.or-ation .or the ne4 i-age/ . the i-age is 'aale to e$e'te ser,ata s'rits a)e sre to 'he') the 3User ,ata3 'he')o$/  >sing t#e Satellite 6 Discover-
•

•

De.ine rles 4hi'h govern ho4 these ,is'overe, s=ste-s are rovisione,/ (his allo4s rovisioning to o''r ato-ati'all= an, 4ithot .rther intervention Enale Dis'over= to 4or) via Satellite Casles via the solate, Casle .eatre/ ntegrate Dis'over= 4ith e$isting 4or).lo4s via its ne4 a--er C* lgin/

#rther ,etails 'an e .on, here: htts:a''ess/re,hat/'o-arti'les15072!

/arameters


195

www%red#at%com

Para-eters are )e=vale airs that 'an e se, in Proisioning templates as 4ell as .or configuration management FPuppetG/ Para-eters 'an e ,e.ine, in several la'es in a hierar'hi'al -anner/ . the sa-e )e= is se, in -ore than one o. those la'es the -ost se'i.i' one to the host 4ill e se,/ (he Re, at Satellite Server -anages t4o ,i..erent t=es o. ara-eters gloal ara-eters an, s-art 'lass ara-eters/

Global Parameters loal ara-eters are a''essile .or se in Re, at Satellite as 4ell as .or Pet 'on.igration -anage-ent/ Io 'an a''ess gloal ara-eters to se in Re, at Satellite 4herever ER& te-lating is eing se,/ Io 'an a''ess the vale o. gloal ara-eters in:  An= t=e o. rovisioning te-late  Partition tales (he re'o--en,e, 4a= to a''ess loal Para-eters in a Pet -ani.est is ::variale t variale 4or)s as 4ell/ Para-eters availale to a host .or rovisioning or 'on.igration -anage-ent 4ith Pet 'an e revie4e, at:  osts ➤ +ll osts ➤ Sele't the host .or 4hi'h =o 4ant to vie4 the availale ara-eters/  Cli') on the H+5) tton/

Aote, No -atter at 4hi'h level ara-eters are ,e.ine, in the hierar'h= in the en, the ara-eters are al4a=s -a,e availale on a er host asis/ #or this reason the= 'an al4a=s e a''esse, 4ith the variale #ost%paramsWTparameternameUX /

(he .ollo4ing grahi' otlines the gloal ara-eter hierar'h=/

www%red#at%com

198


here to ,e.ine Para-eters:  loal ara-eters: Configure ➤ $lobal parameters.  %rganiation:  *o'ation:

+dminister ➤ Organiations ➤ edit ➤ Parameters.

+dminister

 Do-ain:

➤ )ocations ➤ edit ➤ Parameters.

#nfrastructure

➤ 2omains ➤ edit ➤

Parameters.

 %erating S=ste-: osts ➤ Operating systems ➤ edit ➤ Parameters.  ost ro:  ost:

Configure ➤ ost groups ➤ edit ➤ Parameters. osts ➤ +ll hosts

➤ edit ➤ Parameters.

Smart $aria*les 1mart 3ariables are also art o. the gloal ara-eters an, 'an e ,e.ine, on an= level o. that hierar'h= ase, on a -at'her rle eing se, in the s-art variale ,e.inition/ at'her rles are se, to ,e.ine the level o. the hierar'h= to 4hi'h a ara-eter shol, e assigne,/ #or e$a-le to assign a ,i..erent variale ase, on the environ-ent =o 'ol, 'reate a s-art variale -at'her rle li)e this:


19(


Aote, t is i-ortant to .lag the 'he')o$ Moverri,e to tell Re, at Satellite to -anage the variale/ 1mart 3ariables are se, in Pet -ani.ests an, 'an e 'on.igre, n,er  Configure ➤ 1mart 3ariables

Smart Class Parameters (hese ara-eters are s'oe, @assigne,B to a single Pet 'lass/ %ther than gloal ara-eters class parameters are availale onl= insi,e the Pet 'lass 4here the ara-eter is ,e.ine,/

Define Global Parameters (o rea'h a high level o. stan,ar,iation ACE is sing a single provisioning template .or all hosts no -atter the lo'ation or role o. the host/ (o e ale to 'on.igre hosts ,i..erentl= ase, on the lo'ation ACE ses the lo'ation ara-eters to set the time,one an, "anguage,

2ocation

Parameter, !e-

Parameter, $alue

oston

ti-eone

A-eri'aNe4Ior)

langage

enUS/U(#"

ti-eone

Eroe&erlin

langage

enUS/U(#"

ti-eone

Eroe&erlin

langage

enUS/U(#"

-ni'h

-ni'h,-


196


(o ,e.ine the lo'ationase, ara-eters that 4ill e se, in the /ro'isioning tem&"ate se'tion o. this 'hater navigate to:

2ocation munich, 5/ +dminister ➤ )ocations ➤ sele't the lo'ation munich ➤ on the le.t ane sele't Parameters 6/ A,, A,, the the )e=: )e=: time)one an, the vale: EuropeQBerlin 7/ A,, A,, the the )e=: )e=: language an, the vale: en>S%>3<)=

2ocation munich2dm,,  +dminister ➤ )ocations ➤ sele't the lo'ation munich-dm ➤ on the le.t ane sele't Parameters  A,, the )e=: time)one an, the vale: EuropeQBerlin  A,, the )e=: language an, the vale: en>S%>3<)=

2ocation boston, 9/ +dminister ➤ )ocations ➤ sele't the lo'ation munich-dm ➤ on the le.t ane sele't Parameters 10/A,, the )e=: time)one an, the vale: "mericaQAework 11/ A,, the )e=: )e=: language an, the vale: en>S%>3<)=


199


Aote, At the ti-e o. this 4riting the lo'ationlevel ara-eters 'ol, not e assigne, throgh ha--er/ (he .ire4all servi'e an, SE*in$ are not eing se, an, shol, e ,ea'tivate, throgh the rovisioning hase/ ACE is sing gloal ara-eters to ,isale the .ire4all servi'e an, sets SE*in$ into er-issive -o,e/ 7lo*al

Parameter, !e-

Parameter, $alue

.ire4all

,isale,

selin$

er-issive

Con.igre loal ara-eter:  Configure ➤ $lobal parameters ➤ !ew Parameter  A,, the na-e: firewall an, the vale: ))disa*led  A,, the na-e: selinu? an, the vale: ))permissive

via ha--er:


19=


ha--er gloalara-eter set na-e 3.ire4all3 vale 3,isale,3 ha--er gloalara-eter set na-e 3selin$3 vale 3er-issive3

Aote, ;ales 'an e hi,,en/ #or e$a-le =o 'an hi,e ass4or,s = 'he')ing the hide 'he')o$ in,ivi,all= .or ea'h ara-eter/ &t e a4are that i. =o are sing the hide 'he')o$ the ara-eter 'an still e seen in clearte?t i. =o loo) at the H+5) ott o. a host/ Aote, Io 'an a'hieve the sa-e 'on.igration state = sing 'on.igration -anage-ent 4ith Pet instea, o. sing rovisioning te-lates/ e re'o--en, that =o a'hieve the sa-e host 'on.igration state 4ith Pet/ (he ene.it o. a'hieving the sa-e host 'on.igration state 4ith Pet is that i-agease, ,elo=-ent reslts in the sa-e host 'on.igration state as $e or oot iso rovisioning/ Para-etriation o. rovisioning te-lates is ,one to sho4 the ossiilities an, 'aailities o. the Re, at Satellite Server/ t is etter to )ee sing the o..i'ial Re, at rovisioning te-lates 4henever ossile e'ase ,ates shie, = Re, at that 'ol, intro,'e ne4 .eatres on the te-lates have to e -erge, -anall= i. =o not sing the o..i'ial te-lates/

Tem&"ates (he Re, at Satellite Server 6 is -a)ing se o. the ER& ER& te-lating te-lating langage 4hi'h is art o. the R= stan,ar, lirar=/ ER& te-lating 'an e se, in all &ro'isioning tem&"ate ty&es an, &artition tab"es/ ER& intro,'es a ne4 .le$iilit= that lets =o rovision Re, at Enterrise *in$ 5 6 an, 7 throgh a single rovisioning te-late/ hen a )i')start .ile is ren,ere, .or rovisioning the ER& 'o,e se, in the te-lates is evalate, an, sstitte, on the Satellite Server 6/

Aote, Pet te-lates also sort the ER& te-lating langage in or,er to se'i.= 'ontent o. .iles/

Template type overview: 3-pe

Description

rov rovision

(he -a -ain te te-late s se, .o .or n natten,e, in installation @Li')startB


19&


sniet

S'rit that 'an e in'l,e, in another te-late an, share, a'ross -ltile te-lates

&oot,is)

Creates a oot/isoV en enales ,e ,elo=-ent in in environ-ents 4ithot DCP an, (#(P

P8E*in$

anages (#(P re'or,s .or net4or)ase, installations

iP8E

Use, in iP8E environ-ents instea, o. P8E*in$

.inish

nstall s'rit that is se, to e$e'te 'sto- a'tions in the Fost se'tion ,ring )i')start/

ser,ata

Csto- .inish s'rit se, .or i-agease, ,elo=-ents in RE* %ensta') Plat.or-/

(e-lates are lo'ate, n,er: 10/ osts ➤ Proisioning templates Re, at shis the .ollo4ing i-ortant te-lates to se .or Re, at Enterrise *in$ rovisioning: 3emplate Aame

3-pe

4omment

Satellite Li')start De.alt

rovision

Li')start ro.ile  -ain installation te-late/ Sniets are nor-all= in'l,e, in this ro.ile t=e/

Li')start ,e ,e.alt P8 P8E*in$

P8E*in$

Creates th the (#(P oot rre e'or,

ss ss'r 'ri iti tion on-an anag ager err reg egis istr trat atio ion n

sni snie ett

hen hen a ost ost or ost ost ro ro  is asso'iate, 4ith an a'tivation )e= .or rovisioning the 1atellite te-late loa,s the >ickstart 2efault te-late subscription_manager_registration sniet to register the host at the Re, at Satellite Server an, to installs the )atelloagent a')age/

&oot ,is) iP8E  host

iP8E

enerates a hostse'i.i' oot iso

et/'on.

sniet

Creates a no,e @hostB se'i.i' et/'on.

Satell telliite Li')s ')start tart De. De.alt #ini inish

.inis inish h

Satellite Li')start De.alt User Data

ser,ata


1=0


Aote, #or an overvie4 o. the )i')start otions that 'an e se, in the rovisioning te-late see: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Enterrise *in$7 ht-l nstallatio ni,ese't )i')start s=nta$ /ht-l

Clone a Provisioning Template Proisioning templates that are shie, = Re, at are not allo4e, to e e,ite, ,ire'tl=/ (he te-lates are lo')e, to ensre that a host 'an al4a=s e s''ess.ll= rovisione, 4ith these te-lates/ oreover the te-lates -a= e enhan'e, 4hen the Re, at Satellite Server 4ill e ,ate,/

(o 'hange a rovisioning te-late or se a ara-eter insi,e it 0 it -st e cloned/ n this ,o'-ent the te-late 1atellite >ickstart 2efault is the onl= one that 4ill e 'lone, an, a,ate, to se the reviosl= ,e.ine, ara-eters at the gloal an, lo'ation level/ (o 'lone a te-late navigate to: 7/ osts ➤ Proisioning templates "/ %n the ro4 4ith the na-e 1atellite >ickstart 2efault0 go to the right si,e an, 'li') on the clone tton 9/ %n the Ne4 (e-late age .ill in the na-e ACME 4ickstart $e!au"t 10/Rela'e the variales a/ rela'e langage 4ith: lang BEI Jhost.params%KlanguageL' E / rela'e selin$ 4ith: selinu4 BEI Jhost.params%Kselinu4L' E '/ rela'e .ire4all 4ith: firewall BEI Jhost.params%KfirewallL' E ,/ note that the ara-eter time-one is alrea,= se, = ,e.alt i. availale/


1=1

www%red#at%com

via #ammer,  Do4nloa, the e$isting Provisioning te-late ha--er te-late ,- na-e 3Satellite Li')start De.alt3 ` 3t-t-/s),3

 E,it the .ile t-t-/s), to rela'e the variales liste, aove  -ort the te-late n,er the ne4 na-e %RACE ha--er te-late 'reate X .ile t-t-/s), X na-e 3\%R] Li')start ,e.alt3 X organiations 3\%R]3 X t=e rovision

Aote, All ne'essar= Proisioning templates shol, alrea,= e assigne, to the Organiation = ,e.alt i. =or te-late is -issing navigate to: +dminister ➤ Organiations ➤ sele't Organiation ➤ sele't ,emplates on the le.t si,e ➤ 'he') the -issing te-late in the le.t o$ to assign it to the Organiation ➤ 'li') the 1ubmit tton

www%red#at%com

1='


/artition Tab"es Partition tables are a t=e o. proisioning template/ (he= are lo'ate, n,er another se'tion e'ase it is o.ten the 'ase that the sa-e host te-late is eing se, 4ith ,i..erent artition la=ots ase, on the role assigne, to a host/

Partition tales are 'reate, n,er:  osts ➤ Partition tables (here are t4o )in,s o. artition tales static an, dynamic/

Static Partition 3a*le As the na-e i-lies stati' artition tales 'ontain a .i$e, artition la=ot/

D-namic Partition 3a*les D=na-i' artition tales enale an a,-inistrator to 'reate a ,i..erent artition la=ot ,=na-i'all= 4ith onl= one artition tale/ A ,=na-i' artition tale 'an -a)e se o. ER& K &ash/ n these 'ases ER& is evalate, on the Re, at Satellite an, the &ash 'o,e is e$e'te, on the host itsel. ,ring installation/ #or e$a-le the s4a sie o. a artition 'an e a ,i..erent sie ase, on the -e-or= availale/ (o in.or- the Re, at Satellite Server that a artition tale shol, e ,=na-i' la'e hashtagFMG2ynamic at the to o. the artition tale/ D=na-i' _artition tale 'on.igration`

A D=na-i' artition tale has to e lo'ate, at /tmp/diskpart.cfg on the .iles=ste- o. a host at the Fre se'tion o. the )i')start ro'ess/

E?ample, D=na-i' 'at __E%# ` t-,is)art/'.g ero-r =es 'learart all initlael art s4a sie 20"


1=5

www%red#at%com

art oot .st=e e$t sie 500 asri-ar= art  .st=e $.s sie 096 gro4 E%#

Create the Custom Partition Table @arning, (he .ollo4ing in.or-ation has een rovi,e, = Re, at t is otsi,e the s'oe o. the oste, Servi'e *evel Agree-ents an, sort ro'e,res/ (he in.or-ation in this arti'le 'ol, -a)e the %erating S=ste- nsorte, = Re, at loal Sort Servi'es/ n this 'hater 4e sho4 an e$a-le o. ho4 o4er.l sing ,=na-i' artition tales 'an e/ o4ever se o. the in.or-ation is at the serHs o4n ris)/ e 'reate a ,=na-i' artition tale 4ith the .ollo4ing 'aailities:  Uses Re, at Enterrise *in$ 6 an, 7 d .or RE*6 ses the e$t .iles=sted .or RE*7 ses the $.s .iles=ste Uses the sa-e artition la=ot .or the %erating S=ste- an, a ,i..erent ali'ation la=ot on a se'on, ,is) ase, on a,,itional sniets  hen a se'on, ,is) is availale loa,s a neste, artition tale d the .irst ,is) is se, .or the %erating S=ste- onl= d the se'on, ,is) is se, .or the ,ata @ali'ationB onl=  the neste, artition tale is loa,e, 4hen a ara-eter 'alle, Jhost.params%KptableL' is availale/  the neste, artition tale is a sniet lo'ate, n,er the rovisioning te-lates an, .ollo4s this na-ing 'onvention: tale  _ org `  _ tale na-e ` E$a-le: talea'-egit

 4hen the host is rerovisione, the .iles=ste- la=ot an, the ,ata on the se'on, ,is) re-ain availale/ Aote, ER& 'o,e @_F///F`B is evalate, on the Re, at Satellite Server/ &ash 'o,e is e$e'te, on the 'lient in the Fre se'tion o. the Li')start .ile/

www%red#at%com

1=8


(o 'reate the ,=na-i' artition tale .or Re, at Enterrise *in$ 6 an, 7 go to:  osts ➤ Partition tables ➤ !ew Partition ,able  Enter the na-e: ptable-acme-os-rhel-serer  Co= K aste the artition la=ot .ro- the o$ elo4 into the )ayout te$t .iel,  Sele't the %S .a-il= Red at  S-it D=na-i' _F i. host/oeratings=ste-/-a?or/toi ` 6 F` _F .st=e  3$.s3 F` _F else F` _F .st=e  3e$t3 F` _F en, F` PRDSL@a4) HYvs[,a'0,0 \rint  Ve$it]H ro'artitionsB gre E G HYvs[,'1,1H ro'artitions KK SECDSL@a4) HYvs[,'1,1 \rint  Ve$it]H ro'artitionsB gre E G HYvs[,1'1,11H ro'artitions KK E8S(N3tre3 e'ho ero-r `` t-,is)art/'.g e'ho 'learart ,rives \PRDSL] all initlael `` t-,is)art/'.g e'ho art oot .st=e _F .st=e F` sie512 on,is)\PRDSL] asri-ar= `` t-,is)art/'.g e'ho art v/65 sie1 gro4 on,is) \PRDSL] `` t-,is)art/'.g e'ho volgro vgs=s esie!276" v/65 `` t-,is)art/'.g _F i. host/ara-sYHtaleH[ F` _F sniet 3talea'-e\host/ara-sYHtaleH[]3 F` _F en, F` e'ho logvol  .st=e _F .st=e F` na-elvroot vgna-evgs=s sie20" .sotions3noati-e3 `` t-,is)art/'.g e'ho logvol s4a .st=e s4a na-elvs4a vgna-evgs=s sie20" `` t-,is)art/'.g e'ho logvol ho-e .st=e _F .st=e F` na-elvho-e vgna-evgs=s sie20" .sotions3noati-esrGotagrGota3 `` t-,is)art/'.g e'ho logvol t- .st=e _F .st=e F` na-elvt- vgna-evgs=s sie102 .sotions3noati-e3 `` t-,is)art/'.g e'ho logvol sr .st=e _F .st=e F` na-elvsr vgna-evgs=s sie20" .sotions3noati-e3 `` t-,is)art/'.g e'ho logvol var .st=e_F .st=e F` na-elvvar vgna-evgs=s sie20" .sotions3noati-e3 `` t-,is)art/'.g


1=(

www%red#at%com

e'ho logvol varlog .st=e _F .st=e F` na-elvlog vgna-evgs=s sie20" .sotions3noati-e3 `` t-,is)art/'.g e'ho logvol varloga,it .st=e _F .st=e F` na-elva,it vgna-evgs=s sie256 .sotions3noati-e3 `` t-,is)art/'.g

via #ammer,  Create the .ile /tmp/tmp.ptable-acme-os-rhel-serer.ptable 4ith the artition tale la=ot aove  Uloa, the artition tale ha--er artitiontale 'reate na-e talea'-eosrhelserver os.a-il= 3Re,hat3 .ile t-t-/talea'-eosrhelserver/tale

(he Neste, Partition (ale .or the git server has to e 'reate, as a sniet n,er rovisioning te-lates:      

osts ➤ Proisioning templates ➤ !ew ,emplate Enter the na-e: ptable-acme-git Co= K aste the 'o,e elo4 into the te-late e,itor S4it'h to the ,ype ta ➤ .lag the 'he')o$ 1nippet S4it'h to the )ocation ta ➤ a,, all three lo'ations S-it

www%red#at%com

1=6


_F i. host/oeratings=ste-/-a?or/toi ` 6 F` _F .st=e  3$.s3 F` _F else F` _F .st=e  3e$t3 F` _F en, F` i. YY  \E8S(N] [[V then e'ho volgro vg,ata esie!276" v/1!0 `` t-,is)art/'.g e'ho art v/1!0 .st=e3lv-v3 sie1 gro4 on,is) \SECDSL] `` t-,is)art/'.g e'ho logvol srvgit .st=e _F .st=e F` na-elvgit vgna-evg,ata sie1 gro4 .sotions3noati-e3 `` t-,is)art/'.g eli. YY n \SECDSL] [[V then e'ho logvol srvgit .st=e _F .st=e F` na-elvgit vgna-evg,ata sie1 gro4 .sotions3noati-e3 no.or-at `` t-,is)art/'.g .i

via #ammer,  Create the .ile /tmp/tmp.ptable-acme-git.ptable 4ith the artition tale la=ot aove


1=9

www%red#at%com

 Uloa, the artition tale ha--er artitiontale 'reate na-e talea'-egit os.a-il= 3Re,hat3 .ile t-t-/talea'-egit/tale

Aote,  ER& 'o,e is 4ritten in le/  &ash 'o,e is 4ritten in orange/

/ro'isioning Setu& &e.ore a host 'an e rovisione, throgh the Re, at Satellite Server several o?e'ts have to e 'on.igre, an, 'o-ine,/ (he .ollo4ing grahi' otlines ho4 these o?e'ts are 'o-ine, an, the ne$t se'tion gives a ste=ste e$lanation o. the ro'ess:

(o e ale to rovision a host =o must go throgh the .ollo4ing set:  "ssign t#e Operating S-stem to a Provisioning 3emplate Asso'iate the Operating 1ystems 4ith the Proisioning template =o lan to se/ ou must first asso'iate an Operating 1ystem 4ith a Proisioning template e.ore that (e-late 'an e sele'te, in the Operating 1ystem -en/

www%red#at%com

1==


 

   

A,, the %erating S=ste-: osts ➤ Proisioning ,emplates #ollo4 the sa-e stes .or the .ollo4ing te-lates: d ACE Li')start ,e.alt d &oot ,is) iP8E  host d Li')start ,e.alt P8E*in$ d Satellite Li')start De.alt User Data Sele't the te-late ➤ s4it'h to the +ssociation ta ➤ a,, all %erating S=ste-s S4it'h to the )ocations ta ➤ a,, all lo'ations S4it'h to the Organiations ta ➤ veri.= that the organiation is alrea,= assigne, or assign it S-it

via #ammer, %RACE ha--er os list  a4) # 33 HRe,at \rint 2]H  se, sH H  4hile rea, RE*Release ,o ha--er te-late a,,oeratings=ste- X na-e 3\%R] Li')start ,e.alt3 X oeratings=ste- 3\RE*Release]3 ha--er te-late a,,oeratings=ste- X na-e 3Li')start ,e.alt P8E*in$3 X oeratings=ste- 3\RE*Release]3 ha--er te-late a,,oeratings=ste- X na-e 3&oot ,is) iP8E  host3 X oeratings=ste- 3\RE*Release]3 ha--er te-late a,,oeratings=ste- X na-e 3Satellite Li')start De.alt User Data3 X oeratings=ste- 3\RE*Release]3 ,one

 "ssign t#e "rc#itecture 3emplates and Partition 3a*le to an Operating S-stem


1=&

www%red#at%com

A,, the Ar'hite'tre Provisioning te-lates an, Partition tale:  osts ➤ Operating systems  #or ea'h %erating s=ste- that nee,s to e s=n'hronie, .ollo4 these stes: d %n the Operating 1ystem ta ➤ .lag the 'he')o$ 4N_9 d S4it'h to the Partition ,able ta ➤ .lag the ptable-acme-os-rhel-serer an, >ickstart default d S4it'h to the #nstallation media ta ➤ .lag the nstallation -e,ia 'orreson,ing to the sele'te, Operating 1ystem d S4it'h to the ,emplates ta ➤ sele't the .ollo4ing te-lates:  rovision: ACE Li')start ,e.alt  &oot,is): &oot ,is) iP8E  host  P8E*in$: Li')start ,e.alt P8E*in$  ser,ata: Satellite Li')start De.alt User Data d S-it

via #ammer, %RACE ha--er os list  a4) # 33 HRe,at \rint 2]H  se, sH H  4hile rea, RE*Release ,o ha--er os a,,ar'hite'tre title 3\RE*Release]3 X ar'hite'tre $"66 ha--er os a,,tale title 3\RE*Release]3 X artitiontale 3talea'-eosrhelserver3 ha--er os a,,tale title 3\RE*Release]3 X artitiontale 3Li')start ,e.alt3 ha--er os a,,'on.igte-late title 3\RE*Release]3 X 'on.igte-late 3Li')start ,e.alt P8E*in$3 ha--er os a,,'on.igte-late title 3\RE*Release]3 X 'on.igte-late 3\%R] Li')start ,e.alt3 ha--er os a,,'on.igte-late title 3\RE*Release]3 X

www%red#at%com

1&0


'on.igte-late 3&oot ,is) iP8E  host3 ha--er os a,,'on.igte-late title 3\RE*Release]3 X 'on.igte-late 3Satellite Li')start De.alt User Data3 ,one

 "ssign t#e 4apsule
A,, a Re, at Casle to a snet: !/ #nfrastructure ➤ 1ubnets / Con.igre ea'h snet a''or,ing to the .ollo4ing tale: Su*net ta*

4apsules ta*

2ocations ta*

e$a-le/'o-

.or DCP (#(P an, DNS Casle:  satellite/e$a-le/'o-

-ni'h

,-/e$a-le/'o-

.or DCP (#(P an, DNS Casle:  'asle-ni'h/,-/e$a-le /'o-

-ni'h,-

novalo'al

.or DNS Casle:  'asleoston/novalo'al

oston

5/ S-it

via #ammer,  er= the Re, at Casle D


1&1

www%red#at%com

ha--er 'asle list

Output,  D  NAE  UR*  1  satellite/e$a-le/'o htts:satellite/e$a-le/'o-:9090 

 Assign the Re, at Casle to a 'orreson,ing Snet e$a-le/'o Pro$=D1 SU&NE(e$a-le/'o *%CA(%N-ni'h ha--er snet ,ate na-e 3\SU&NE(]3 X ,nsi, 3\Pro$=D]3 X ,h'i, 3\Pro$=D]3 ia- 3DCP3 X t.ti, M\Pro$=D] X lo'ations M\*%CA(%N]

 "ssign t#e Red Hat 4apsule to a Domain A Re, at Casle -st e assigne, to a 2omain i. the Casle -anages an A re'or, on the DNS Server/

A,, a Re, at Casle to a 2omain:  #nfrastructure ➤ 2omains  Con.igre ea'h ,o-ain a''or,ing to the .ollo4ing tale: Domain

Domain ta*

2ocations ta*

e$a-le/'o-

DNS Casle:  satellite/e$a-le/'o-

-ni'h

,-/e$a-le/'o-

DNS Casle:  'asle-ni'h/,-/e$a-le/'o-

-ni'h,-

www%red#at%com

1&'


novalo'al

DNS Casle:  'asleoston/novalo'al

oston

 Su*mit

via #ammer,  "ssign Red Hat 4apsule to t#e corresponding Su*net e$a-le/'o D%ANe$a-le/'o *%CA(%N-ni'h ha--er ,o-ain ,ate na-e 3\D%AN]3 lo'ations 3\*%CA(%N]3 ,-/e$a-le/'o D%AN,-/e$a-le/'o *%CA(%N-ni'h,- ha--er ,o-ain ,ate na-e 3\D%AN]3 lo'ations 3\*%CA(%N]3 novalo'al D%ANnovalo'al *%CA(%Noston ha--er ,o-ain ,ate na-e 3\D%AN]3 lo'ations 3\*%CA(%N]3

 "ssign t#e Domain to a Su*net A Do-ain has to e assigne, to a snet:  (o i,enti.= the ,o-ain to 4hi'h the snet elongs to  /f t#e Red Hat 4apsule DAS feature is used to -anage the DNS reverse one/

A,, a Do-ain to a Snet  #nfrastructure ➤ 1ubnets  A,, ea'h ,o-ain a''or,ing to the .ollo4ing tale Su*net

Domains ta*

e$a-le/'o-

.lag the ,o-ain  e$a-le/'o-


1&5

www%red#at%com

,-/e$a-le/'o-

.lag the ,o-ain  ,-/e$a-le/'o-

novalo'al

.lag the ,o-ain  novalo'al

 S-it

via #ammer, e$a-le/'o SU&NE(e$a-le/'o D%ANe$a-le/'oha--er snet ,ate na-e 3\SU&NE(]3 X ,o-ains M\D%AN] ,-/e$a-le/'o SU&NE(,-/e$a-le/'o D%AN,-/e$a-le/'oha--er snet ,ate na-e 3\SU&NE(]3 X ,o-ains M\D%AN] novalo'al SU&NE(novalo'al D%ANnovalo'al ha--er snet ,ate na-e 3\SU&NE(]3 X ,o-ains M\D%AN]

 $erif- t#e 4ompute ResourceUs Organiation and 2ocation Io 'an li-it the se o. a Compute Resource = assigning it to an organiation an, to se'i.i' lo'ations/

www%red#at%com

1&8


(o veri.= the Compute ResourceLs organiation an, lo'ation assign-ent: / +dminister ➤ Organiations ➤ +C5* a/ sele't Compute Resources on the le.t ane ➤ veri.= all Compute Resources are a,,e, b. 1ubmit 5/ +dminister ➤ )ocations ➤ .or ever= lo'ation @-ni'h -ni'h,- an, ostonB a/ sele't Compute Resources on the le.t ane ➤ veri.= that the Compute Resource .or this lo'ation is a,,e,/ b. 1ubmit

via #ammer, %RACE *%CA(%NS-ni'h-ni'h,-oston C%PU(ERES%URCEa'-erhev-ni'h ha--er 'o-teresor'e ,ate organiations M\%R] lo'ations M \*%CA(%NS] na-e M\C%PU(ERES%URCE] C%PU(ERES%URCEa'-erhev-ni'h,- ha--er 'o-teresor'e ,ate organiations M\%R] lo'ations M \*%CA(%NS] na-e M\C%PU(ERES%URCE] C%PU(ERES%URCEa'-erhelososton ha--er 'o-teresor'e ,ate organiations M\%R] lo'ations M \*%CA(%NS] na-e M\C%PU(ERES%URCE]

 "ssign t#e 2ocation to an Organiation


1&(

www%red#at%com

(o a,, a lo'ation to an organiation: 6/ +dminister ➤ Organiations ➤ +C5* 7/ sele't )ocations on the le.t ane "/ A,, the three lo'ation munich0 munich-dm an, boston to the sele'te, ite-s 9/ S-it

via #ammer, %RACE *%C-ni'h ha--er lo'ation a,,organiation na-e M\*%C] organiation M\%R] *%C-ni'h,- ha--er lo'ation a,,organiation na-e M\*%C] organiation M\%R] *%Coston ha--er lo'ation a,,organiation na-e M\*%C] organiation M\%R]

 "ssign and verif- location assignments ;eri.= that the .ollo4ing o?e'ts are assigne, to the 'orreson,ing lo'ationV other4ise the= have to e a,,e,/

www%red#at%com

1&6


(o veri.= the o?e't assign-ent: "/ +dminister ➤ )ocations ➤ .or ever= lo'ation 9/ Ensre that the ele-ents reGire, .or the lo'ation are a,,e, a/ .or ever= o?e't on the list ➤ sele't the o?e't on the le.t ane i/ e,ia: ACE*irar=^ ii/ %rganiation: ACE iii/ Casle: sele't the Casle .or the lo'ation iv/ Environ-ents: .lag the 'he')o$ +ll enironments v/ Snet : sele't the Snet .or the lo'ation vi/ (e-lates: .lag the 'he')o$ +ll templates vii/ Do-ains: sele't the Do-ain .or the lo'ation viii/ ost ros: .lag the 'he')o$ +ll host groups i$/ Co-te Resor'es: sele't the Co-te Resor'e .or the lo'ation 10/S-it

Aote, Environ-ents are lishe, 'ontent @'ontentvie4sB an, not the *i.e'='le Environ-ent/ (he Casle .or the lo'ations -ni'h,- an, oston 4ill e assigne, a.ter the= are installe,/

/ro'isioning =ork!"o% (he rovisioning 4or).lo4 gives an overvie4 o. the stes that a host e$e'tes ,ring rovisioning/


1&9

www%red#at%com

#or rovisioning 4e ,i..erentiate et4een t4o ,i..erent t=es o. a'tion one-time actions an, repeatable actions a'ross an entire host li.e'='le/

One-time actions A'tions that are e$e'te, onl= on'e on a host ,ring rovisioning an, are e$e'te, not to 'hange ,ring the 4hole li.e'='le o. a host/ %neti-e a'tions are 'on.igre, in templates on Satellite Server 6/ So-e e$a-les o. oneti-e a'tions: "ction Partitioning S=ste- *angage S=ste- (i-eone

Repeatable actions A'tions to ensre a s=ste-Os target state ,ring the 4hole li.e'='le o. a host/ Use reeatale a'tions i. the 'on.igration on a host 'ol, 'hange a.ter initial rovisioning/ Reeatale a'tions are e$e'te, throgh Satellites configuration management / So-e e$a-les o. reeatale a'tions: "ction DNS 'on.igration N(P 'on.igration S=ste- har,ening

Aote, e re'o--en, that =o 'on.igre ever=thing on a host throgh 'on.igration -anage-ent 4henever ossile/

Provisioning Workow overview

www%red#at%com

1&=


1% 4reate a Aew Host in Satellite refarc#)feed*ack+red#at%com

1&&

www%red#at%com

De.ine a host re'or, on the Re, at Satellite Server 4here the hostOs role is assigne, as 4ell as host se'i.i' in.or-ation @ostna-e Do-ain Snet P///B

Aote, &e'ase o. the Casle .eatre o. the Re, at Satellite Server se, in this soltion gi,e (#(P DCP an, DNS re'or,s are 'reate, ato-ati'all= ase, on the in.or-ation rovi,e, .ro- the host re'or,/ '% 4reate a $. (he Satellite Server 'onne'ts to the 'on.igre, 4ompute Resource an, 'reates a virtal -a'hine @;B ase, on the se'i.i'ation .ro- the Compute Profile that =o have se, or throgh a -anal ,e.inition ,ring host 'reation/ A.ter4ar,s the ; is starte, so that it 'an er.or- the installation/

Aote, . an= ste is not e$e'te, s''ess.ll= ,ring the host 'reation on the Satellite Server or ; 'reation on the Compute Resource0 the integrate, 4or).lo4 engine @htts: gith/'o- D=n.lo4 ,=n.lo4 B rolls a') the 'hanges an, ,isla=s a noti.i'ation that ,es'ries 4hat 4ent 4rong/ 5% P:E or Boot /SO (he host is 'on.igre, 4ith the net4or) in.or-ation .or loa,ing the Ana'on,a installer an, .or loa,ing an, sing the Li')start ro.ile/

Aote, A &oot S% 'an e se, to oot the host into Ana'on,a i. DCP .or P8E 'annot e se, in =or environ-ent/ 8% Bootstrap "naconda nitialise Ana'on,a @Re, atOs installation rogra-B

6% uer- t#e Server Definition Ana'on,a 4ill reGest the hostOs Li')start ro.ile .ro- the Satellite Server/

9% 7enerate !ickstart %n the Satellite Server the Proisioning templateFsG 4ill e ren,ere, .ora hostse'i.i' www%red#at%com

'00


Li')start ro.ile/ (he te-lates 4ill e ren,ere, 4ith the in.or-ation rovi,e, ,ring 1% 4reate a Aew Host in Satellite in this ro'e,re/

Aote, (o revie4 a Li')start ro.ile e.ore er.or-ing the a'tal installation @it is se.l to 'he') a Li')start ro.ile .or s=nta$ errors .or e$a-le or i. it 'an e ren,ere, s''ess.ll=B navigate to: ost s ➤ +ll osts ➤ sele't host .or 4hi'h to ren,er the )i')start te-late ➤ sele't the ,emplates ta ➤ .or the rovisioning te-late 'li') on the arro4 ,o4n tton ➤sele't reiew

=% Retrieve t#e !ickstart Profile Ana'on,a retrieves the Li')start ro.ile an, 4ill e$e'te it/

&% "ppl- t#e
10% /nstall .inimal Software nstall the Re, at Enterrise *in$ Server 4ith the -ini-al set o. a')ages/

11% 4onfigure t#e Static Aetwork


'01

www%red#at%com

&e.ore the s=ste- 'an register itsel. on the Satellite Server stati' net4or)ing -st e 'on.igre,/

1'% Register at Satellite (he host 4ill se +ctiation >eys to register itsel. to the Satellite Server/ %n'e it is registere, it 'an a''ess its FCompositeG Content-3iew on the )ifecycle *nironment asso'iate, 4ith that +ctiation >ey /

15% E?ecute Puppet .odules All 'o-onents that are assigne, to the host throgh its role 4ill e installe, an, 'on.igre,/ (hese also in'l,e the 'o-onents ,e.ine, in the Core &il, as those that are inherite, to ever= host/

18% 4onfigure a remote server optionalC (his ste allo4s =o to e$e'te a 'sto- s'rit on the Re, at Satellite Server in ,i..erent stages o. the rovisioning hase/ (he 'sto- s'rit 'ol, .or e$a-le 'onne't to a re-ote server or it 'ol, 'reate a host re'or, on the -onitoring server/

Foreman Hooks #ore-an hoo)s are a lgin engine se, = Re, at Satellite that lets =o rn 'sto- hoo) s'rits on #ore-an events/ (hese hoo)s 'an e se, to trigger varios a'tions on the Satellite Server itsel. or on e$ternal s=ste-s/ (hese allo4 an eas= integration 4ith varios other tools se, insi,e an environ-ent/ ore ,etaile, in.or-ation aot #ore-an hoo)s 'an e .on, on the o..i'ial ro?e't age: htts: gith/'o- the.ore-an.ore-an hoo)s n this soltion gi,e 4e rovi,e three sa-le hoo)s to ,e-onstrate the .n'tionalit= o. #ore-an hoo)s an, to rovi,e e$a-les .or otential se 'ases:  a hoo) s'rit that a,,s a ne4 host as a Satellite 'o-te resor'e o. t=e Do')er i. it elongs to the aroriate host gro @'ontainerhostB  a hoo) s'rit integrating an a,,itional logging or a,iting tool that generates log -essages ea'h ti-e #ore-an is rovisioning a ne4 server  a hoo) s'rit to a,, a ne4 host to Jai$ -onitoring ato-ati'all=

www%red#at%com

'0'


A hoo) is e$e'te, n,er the "oreman ser an, al4a=s gets e$e'te, 4ith t4o arg-ents/ (he .irst arg-ent is the event @'reate ,ate ,estro=B the se'on, arg-ent is the o?e't that 4as hoo)e, @in this e$a-le the hostna-e o. a hostB/

Foreman Hook Script Sample 1: Containerhost oo)s lo'ate, in the sa-e ,ire'tor= are e$e'te, in alhaeti'al or,er/ e re'o--en, that =o se a n-eri'al na-ing 'onvention to ensre the roer e$e'tion or,er/ Io -st 'reate a se'i.i' s,ire'tor= str'tre on the Re, at Satellite 4here the #ore-an hoo)s are store,/ (he s,ire'tor= .or the o?e't -st 'ontain another s,ire'tor= .or the event/

Aote, before_proision event is starte, a.ter a host has 'o-lete, its %erating S=ste- installation/ (o 'reate the s,ire'tor= str'tre:  *ogin on the Re, at Satellite Server throgh ssh an, 'reate the ,ire'tor= str'tre: mkdir -p /usr/share/foreman/config/hooks/host/managed/before_proision/

"/ Pla'e the s'rit <_containerhost.sh .ro- the "ppendi? // into the ?st 'reate, ,ire'tor= 'hange the o4nershi to #ore-an an, -ar) it as e$e'tale: 'ho4n .ore-an/.ore-an /usr/share/foreman/config/hooks/host/managed/before_proision/<_containerhost. sh chmod u4 /usr/share/foreman/config/hooks/host/managed/before_proision/<_containerhost. sh

 &= ,e.alt the Re, at Satellite Server is rnning in SE*in$ -o,e en.or'ing/ (his -o,e ensres that the SE*in$ 'onte$t is set 'orre'tl= .or the s'rits to e e$e'te,: restore'on Rv# srshare.ore-an'on.ighoo)s

Aote, (he 'orreson,ing SE*in$ 'onte$t is foreman_hook_t / Sin'e this is an alias to bin_t 'onte$t =o 4ill see the latter i. =o veri.= the SE*in$ 'onte$t/


'05

www%red#at%com

Foreman Hook Script Sample 2: New Host Notification As 4e sai, earlier this hoo) s'rit 'reates a,,itional log -essages ea'h ti-e #ore-an rovisions a ne4 server/ t 'an e se, to ,eg or test .ore-an hoo) 'aailities an, it also 'an e se, to integrate an a,,itional logging or a,iting tool that is noti.ie, ea'h ti-e a ne4 server is 'reate,/ (he hoo) s'rit itsel. is Gite si-le sin'e it in'l,es onl= a single 'o--an, sing the t4o arg-ents it 4as e$e'te, 4ith @a'tion an, hostB: logger 1 2

Si-ilar to the other e$a-le the s'rit nee,s to e la'e, in the aroriate ,ire'tor= an, -a,e e$e'tale/ A,,itionall= the SE*in$ se'rit= 'onte$t nee,s to e restore, as 4ell/ &e'ase the logger 'o--an, reGires a 'ertain er-ission 4e nee, to 'reate a s,oers rle .or it insi,e the /etc/sudoers 'on.igration .ile: .ore-an A**@A**B

N%PASSD:srinlogger

Foreman Hook Script Sample 2: ITSM Tool Integration (Monitoring) (he thir, sa-le s'rit ato-ati'all= a,,s a ne4 host to the Jai$ -onitoring 'on.igration = sing the Jai$ AP/ (his aroa'h allo4s s to t ea'h ne4 server n,er -onitoring 'ontrol/ . ne'essar= this s'rit 'an e e$ten,e, to se .ilter rles to al= onl= to arti'lar servers @.or e$a-le onl= .or servers elonging to the PR%D li.e'='le environ-ent t not to DE; or AB/ (he 'ontainerhost sa-le e$laine, earlier 'an e rese, there.ore e'ase it in'l,es this )in, o. 'on,ition/ (his sa-le s'rit =o 'an .in, insi,e "ppendi? // .igres ot AC a,,resses o. this host via ha--er C* an, han,overs hostna-e an, AC a,,resses to the Jai$ -onitoring server to enale an, 'on.igre so-e asi' re,e.ine, 'he')s/

Aote, (he Jai$ ro Ds an, te-late Ds .or CP ing test an, *in$ %S te-lates are har,'o,e, an, nee, to e a,ate, to =or environ-ent/

www%red#at%com

'08


Acti'ation 4eys A'tivation Le=s are a registration to)en se, in a Li')start .ile to 'ontrol a'tions at registration/ (hese are si-ilar to A'tivation Le=s in Re, at Satellite 5 t rovi,e onl= a sset o. .eatres e'ase Pet 'ontrols a')age an, 'on.igration -anage-ent a.ter registration/ A'tivation Le=s are se, to ss'rie a host against the Latello art o. the Re, at Satellite Server so the host 'an a''ess the so.t4are reositories insi,e the @'o-ositeB 'ontentvie4s/ As -entione, in Ste ! e$li'it su*scription and repositor- management to ena*le or disa*leC is reMuired for all products including Red Hat t#ird part- and custom productsC/ ltile +ctiation >eys 'an e se, in a 'o--a searate, list to register a host on the Satellite Server/ (he .irst )e= on the le.t si,e has a se'ial role an, ,eter-ines: 9/ (he *i.e'='le Environ-ent to 4hi'h a host elongs 10/(he @Co-ositeB Content;ie4 assigne, to a host Ever= )e= @the .irst an, all the .ollo4ing )e=sB in the list 'an: !/ A,, the host to ost Colle'tions / A,, ss'ritions .or the host to 'ons-e 5/ Enale Product Content reositories elonging to the @Co-ositeB Content;ie4

Aote, Even i. other )e=s in the list have a Content;ie4 an,or *i.e'='le Environ-ent i. it is not the .irst )e= in the list this in.or-ation is ignore, .or registration/ &= ,e.alt the registration 4ill e ,one throgh the te-late sniet 'alle, subscription_manager_registration an, ses the A'tivation Le=s liste, in the ara-eter kt_actiation_keys/

Naming Conventions •

•

•

•

A'tivation Le=s start 4ith the re.i$ act as an areviation .or A'tivation Le=/ (he ne$t art o. the na-e ,etails li.e'='le environ-ent to 4hi'h the host is assigne,/ (he thir, @iin.raB ,e.ines 4hi'h 'o-osite 'ontentvie4 to se/ (he .orth art @role na-eB is the ost ro na-e in'l,ing its -eta arent i. se,/


'0(

www%red#at%com

•

(he .i.th art ,e.ines the ar'hite'tre/

As a reslt the a'tivation )e=s have the .ollo4ing na-ing str'tre: a't  _ li.e'='le environ-ent `  _ iin.raos `  _ role na-e `  _ ar'hite'tre `

Create Activation Keys (o 'reate a'tivation )e=s:  Navigate to: Content ➤ +ctiation keys ➤ !ew +ctiation >ey  A,, the na-e .or the a'tivation )e= ➤ sele't the *i.e'='le Environ-ent ➤sele't the Content;ie4  Save  S4it'h to the 1ubscription ta ➤ 'li') on the sta +dd ➤ assign ss'ritions @nee,e, to a''ess Product ContentG ➤ +dd 1elected  S4it'h to the Product ContentG tab ➤ enale reositories d #or the soltion gi,e the .ollo4ing a'tivation )e=s have to e 'reate,: Aame

Environment

4ontent)$iew

Su*scription

Product 4ontent

a't,evin.ra'asle$"66 

DE;


B Re, at Enterrise *in$

B Re, at Satellite (ools 6

B Re, at Satellite Casle

B Re, at Enterrise *in$ 7 Server

B Jai$ onitoring

B Re, at Satellite Casle 6/1 B Jai$onitoring

a'tGain.ra'asle$"66

A

a'tro,in.ra'asle$"6 6

PR%D

a't,evin.ragitserver$"6 6

DE;

''vin.ragitserver




B Re, at Enterrise *in$ 7 Server B Re, at So.t4are Colle'tions B Jai$onitoring

a'tGain.ragitserver$"66 

www%red#at%com

A

'06


Aame

Environment

4ontent)$iew

Su*scription

Product 4ontent

'vosrhel6Server





a'tro,in.ragitserver$"6 PR%D 6 a't,evin.raloghost$"66 

DE;

B Re, at So.t4are Colle'tions B Jai$onitoring a'tGain.raloghost$"66

A

a'tro,in.raloghost$"66 

PR%D

a't,evin.ra'ontainerhost $"66

DE;





B Re, at Enterrise *in$ 7 Server  E$tras B Jai$onitoring

a'tGain.ra'ontainerhost$ "66

A

a'tro,in.ra'ontainerhost $"66

PR%D

a't,evin.ra'oreil,rhel 6server$"66

DE;





B Re, at Enterrise *in$ 6 Server B Jai$onitoring

a'tGain.ra'oreil,rhel6 server$"66

A

a'tro,in.ra'oreil,rhel 6server$"66

PR%D

a't,evin.ra'oreil,rhel 7server$"66

DE;





B Re, at Enterrise *in$ 7 Server B Jai$onitoring

a'tGain.ra'oreil,rhel7 server$"66

A


'09

www%red#at%com

Aame

Environment

a'tro,in.ra'oreil,rhel 7server$"66

PR%D

a't4e,evia'-e4e.r onten,$"66

eDE;

4ontent)$iew

Su*scription

Product 4ontent

''via'-e4e





B EPE*7APP

B Jai$onitoring B EPE*7APP

a't4eGaia'-e4e.ro nten,$"66

eA

a't4eatia'-e4e.r onten,$"66

eUA(

a't4ero,ia'-e4e. ronten,$"66

ePR%D

a't4e,evia'-e4e a')en,$"66

eDE;

''via'-e4e





B EPE*7APP

B Jai$onitoring B EPE*7APP

a't4eGaia'-e4ea ')en,$"66

eA

a't4eatia'-e4e a')en,$"66

eUA(

a't4ero,ia'-e4e a')en,$"66

ePR%D

via #ammer, Create ost Colle'tions %R3ACE3 .or C in 6Server 7Server RE* in.ra i gitserver 'ontainerhost 'asle loghost a'-e4e a'-e4e.ronten, a'-e4ea')en, $"66 ,o ha--er host'olle'tion 'reate na-e \C] organiation 3\%R]3 ,one ha--er li.e'='leenviron-ent list organiation 3\%R]3  a4) # 33 HYY:,igit:[[ \rint 2]H  se, sH H  4hile rea, *CEN; ,o

www%red#at%com

'0=


ha--er host'olle'tion 'reate na-e @e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB organiation 3\%R]3 ,one rhel7server %R3ACE3 ARC3$"663 (IPE3os3 R%*E3rhel7server3 *CEN;S3DE; A PR%D3 SRE*@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Enterrise *in$ 4ith S-art ;irtaliationB \rint X"]3B SJai$@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Jai$onitoringB \rint X"]3B SACE@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  ACEB \rint X"]3B .or *CEN; in \*CEN;S] ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB *CEN;UPPER@e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB ha--er a'tivation)e= 'reate X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X 'ontentvie4 3'vosrhel7Server3 X li.e'='leenviron-ent 3\*CEN;]3 X organiation 3\%R]3

SDs3\SRE*] \SJai$] \SACE]3 .or SD in \SDs] ,o ha--er a'tivation)e= a,,ss'rition X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X ss'ritioni, 3\SD]3 X organiation 3\%R]3 ,one

ostColle'tion3RE* 7Server $"66 \*CEN;UPPER]3 .or C%**EC(%N in \ostColle'tion] ,o ha--er a'tivation)e= a,,host'olle'tion X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X host'olle'tion 3\C%**EC(%N]3 X organiation 3\%R]3 ,one

Content*aels3ACEJai$onitoringJai$RE*7$"66 rhel7serverr-s3 .or C*A&E* in \Content*aels] ,o ha--er a'tivation)e= 'ontentoverri,e X


'0&

www%red#at%com

'ontentlael \C*A&E*] X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X organiation 3\%R]3 X vale 313 ,one ,one rhel6server %R3ACE3 ARC3$"663 (IPE3os3 R%*E3rhel6server3 *CEN;S3DE; A PR%D3 SRE*@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Enterrise *in$ 4ith S-art ;irtaliationB \rint X"]3B SJai$@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Jai$onitoringB \rint X"]3B SACE@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  ACEB \rint X"]3B .or *CEN; in \*CEN;S] ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB *CEN;UPPER@e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB ha--er a'tivation)e= 'reate X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X 'ontentvie4 3'vosrhel6Server3 X li.e'='leenviron-ent 3\*CEN;]3 X organiation 3\%R]3


ostColle'tion3RE* 6Server $"66 \*CEN;UPPER]3 .or C%**EC(%N in \ostColle'tion] ,o ha--er a'tivation)e= a,,host'olle'tion X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X host'olle'tion 3\C%**EC(%N]3 X organiation 3\%R]3 ,one

Content*aels3ACEJai$onitoringJai$RE*6$"66 rhel6serverr-s3

www%red#at%com

'10


.or C*A&E* in \Content*aels] ,o ha--er a'tivation)e= 'ontentoverri,e X 'ontentlael \C*A&E*] X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X organiation 3\%R]3 X vale 313 ,one ,one C%N(ANER%S( %R3ACE3 ARC3$"663 (IPE3in.ra3 R%*E3'ontainerhost3 *CEN;S3DE; A PR%D3 SRE*@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Enterrise *in$ 4ith S-art ;irtaliationB \rint X"]3B SJai$@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Jai$onitoringB \rint X"]3B SACE@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  ACEB \rint X"]3B .or *CEN; in \*CEN;S] ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB *CEN;UPPER@e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB ha--er a'tivation)e= 'reate X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X 'ontentvie4 3''vin.ra'ontainerhost3 X li.e'='leenviron-ent 3\*CEN;]3 X organiation 3\%R]3


ostColle'tion3'ontainerhost RE* 7Server $"66 \*CEN;UPPER]3 .or C%**EC(%N in \ostColle'tion] ,o ha--er a'tivation)e= a,,host'olle'tion X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X host'olle'tion 3\C%**EC(%N]3 X organiation 3\%R]3 ,one


'11

www%red#at%com

Content*aels3ACEJai$onitoringJai$RE*7$"66 rhel7serverr-s rhel7servere$trasr-s3 .or C*A&E* in \Content*aels] ,o ha--er a'tivation)e= 'ontentoverri,e X 'ontentlael \C*A&E*] X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X organiation 3\%R]3 X vale 313 ,one ,one CAPSU*E %R3ACE3 ARC3$"663 (IPE3in.ra3 R%*E3'asle3 *CEN;S3DE; A PR%D3 SRE*@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Enterrise *in$ 4ith S-art ;irtaliationB \rint X"]3B SJai$@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Jai$onitoringB \rint X"]3B SACE@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  ACEB \rint X"]3B SCasle@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Satellite Casle ServerB \rint X "]3B .or *CEN; in \*CEN;S] ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB *CEN;UPPER@e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB ha--er a'tivation)e= 'reate X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X 'ontentvie4 3''vin.ra'asle3 X li.e'='leenviron-ent 3\*CEN;]3 X organiation 3\%R]3

SDs3\SRE*] \SJai$] \SACE] \SCasle]3 .or SD in \SDs] ,o ha--er a'tivation)e= a,,ss'rition X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X ss'ritioni, 3\SD]3 X organiation 3\%R]3 ,one ostColle'tion3'asle RE* 7Server $"66 \*CEN;UPPER]3 .or C%**EC(%N in \ostColle'tion]

www%red#at%com

'1'


,o ha--er a'tivation)e= a,,host'olle'tion X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X host'olle'tion 3\C%**EC(%N]3 X organiation 3\%R]3 ,one

Content*aels3ACEJai$onitoringJai$RE*7$"66 rhel7serverr-s3 .or C*A&E* in \Content*aels] ,o ha--er a'tivation)e= 'ontentoverri,e X 'ontentlael \C*A&E*] X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X organiation 3\%R]3 X vale 313 ,one ,one *%%S( %R3ACE3 ARC3$"663 (IPE3in.ra3 R%*E3loghost3 *CEN;S3DE; A PR%D3 SRE*@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Enterrise *in$ 4ith S-art ;irtaliationB \rint X"]3B SJai$@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Jai$onitoringB \rint X"]3B SACE@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  ACEB \rint X"]3B .or *CEN; in \*CEN;S] ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB *CEN;UPPER@e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB ha--er a'tivation)e= 'reate X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X 'ontentvie4 3'vosrhel6Server3 X li.e'='leenviron-ent 3\*CEN;]3 X organiation 3\%R]3



'15

www%red#at%com

ostColle'tion3loghost RE* 6Server $"66 \*CEN;UPPER]3 .or C%**EC(%N in \ostColle'tion] ,o ha--er a'tivation)e= a,,host'olle'tion X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X host'olle'tion 3\C%**EC(%N]3 X organiation 3\%R]3 ,one

Content*aels3ACEJai$onitoringJai$RE*6$"66 rhel6serverr-s3 .or C*A&E* in \Content*aels] ,o ha--er a'tivation)e= 'ontentoverri,e X 'ontentlael \C*A&E*] X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X organiation 3\%R]3 X vale 313 ,one ,one (SER;ER %R3ACE3 ARC3$"663 (IPE3in.ra3 R%*E3gitserver3 *CEN;S3DE; A PR%D3 SRE*@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Enterrise *in$ 4ith S-art ;irtaliationB \rint X"]3B SJai$@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Jai$onitoringB \rint X"]3B SACE@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  ACEB \rint X"]3B .or *CEN; in \*CEN;S] ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB *CEN;UPPER@e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB ha--er a'tivation)e= 'reate X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X 'ontentvie4 3''vin.ragitserver3 X li.e'='leenviron-ent 3\*CEN;]3 X organiation 3\%R]3 SDs3\SRE*] \SJai$] \SACE]3 .or SD in \SDs] ,o ha--er a'tivation)e= a,,ss'rition X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X

www%red#at%com

'18


ss'ritioni, 3\SD]3 X organiation 3\%R]3

,one

ostColle'tion3gitserver RE* 7Server $"66 \*CEN;UPPER]3 .or C%**EC(%N in \ostColle'tion] ,o ha--er a'tivation)e= a,,host'olle'tion X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X host'olle'tion 3\C%**EC(%N]3 X organiation 3\%R]3 ,one

Content*aels3ACEJai$onitoringJai$RE*7$"66 rhel7serverr-s rhelserverrhs'l7r-s3 .or C*A&E* in \Content*aels] ,o ha--er a'tivation)e= 'ontentoverri,e X 'ontentlael \C*A&E*] X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X organiation 3\%R]3 X vale 313 ,one ,one ACEE&#R%N(END %R3ACE3 ARC3$"663 (IPE3i3 R%*E3a'-e4e.ronten,3 *CEN;S3eDE; eA eUA( ePR%D3 SRE*@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Enterrise *in$ 4ith S-art ;irtaliationB \rint X"]3B SJai$@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Jai$onitoringB \rint X"]3B SACE@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  ACEB \rint X"]3B SEPE*7APP@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  EPE*7APPB \rint X"]3B .or *CEN; in \*CEN;S] ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB *CEN;UPPER@e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB ha--er a'tivation)e= 'reate X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X 'ontentvie4 3''via'-e4e3 X li.e'='leenviron-ent 3\*CEN;]3 X organiation 3\%R]3


'1(

www%red#at%com

SDs3\SRE*] \SJai$] \SACE] \SEPE*7APP]3 .or SD in \SDs] ,o ha--er a'tivation)e= a,,ss'rition X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X ss'ritioni, 3\SD]3 X organiation 3\%R]3 ,one

ostColle'tion3a'-e4e a'-e4e.ronten, RE* 7Server $"66  \*CEN;UPPER]3 .or C%**EC(%N in \ostColle'tion] ,o ha--er a'tivation)e= a,,host'olle'tion X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X host'olle'tion 3\C%**EC(%N]3 X organiation 3\%R]3 ,one Content*aels3ACEJai$onitoringJai$RE*7$"66 rhel7serverr-s ACEEPE*7APPEPE*7APP$"663 .or C*A&E* in \Content*aels] ,o ha--er a'tivation)e= 'ontentoverri,e X 'ontentlael \C*A&E*] X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X organiation 3\%R]3 X vale 313 ,one ,one

ACEE&&ACLEND %R3ACE3 ARC3$"663 (IPE3i3 R%*E3a'-e4ea')en,3 *CEN;S3eDE; eA eUA( ePR%D3 SRE*@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Re, at Enterrise *in$ 4ith S-art ;irtaliationB \rint X"]3B SJai$@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  Jai$onitoringB \rint X"]3B SACE@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  ACEB \rint X"]3B SEPE*7APP@ha--er 'sv 'svsearator HH ss'rition list erage 9999 organiation \%R]  a4) #33 3@X1  EPE*7APPB \rint X"]3B .or *CEN; in \*CEN;S] ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB *CEN;UPPER@e'ho \*CEN;]  tr HYY:lo4er:[H HYY:er:[[HB

www%red#at%com

'16


ha--er a'tivation)e= 'reate X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X 'ontentvie4 3''via'-e4e3 X li.e'='leenviron-ent 3\*CEN;]3 X organiation 3\%R]3

SDs3\SRE*] \SJai$] \SACE] \SEPE*7APP]3 .or SD in \SDs] ,o ha--er a'tivation)e= a,,ss'rition X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X ss'ritioni, 3\SD]3 X organiation 3\%R]3 ,one

ostColle'tion3a'-e4e a'-e4ea')en, RE* 7Server $"66  \*CEN;UPPER]3 .or C%**EC(%N in \ostColle'tion] ,o ha--er a'tivation)e= a,,host'olle'tion X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X host'olle'tion 3\C%**EC(%N]3 X organiation 3\%R]3 ,one Content*aels3ACEJai$onitoringJai$RE*7$"66 rhel7serverr-s ACEEPE*7APPEPE*7APP$"663 .or C*A&E* in \Content*aels] ,o ha--er a'tivation)e= 'ontentoverri,e X 'ontentlael \C*A&E*] X na-e 3a't\*CEN;*%ER]\(IPE]\R%*E]\ARC]3 X organiation 3\%R]3 X vale 313 ,one ,one

Sate""ite  Host 3rou&s 'er'ie% ost ros greatl= hel in standardiation an, automatiation an, i-rove overall operational efficienc- .or a hostOs entire li.e'='le/ A ost ro is a lerint @te-lateB .or il,ing a ost 4here o?e'ts are 'o-ine, to ,e.ine ho4 a host shol, loo) a.ter ,elo=-ent/ (he host gro a'ts as the ,e.inition o. the target state o. a server/ n or s'enario the .inal target is eGivalent to a role @in'l,ing ro.ilesB/(his in'l,es the 'ontent vie4 @4hi'h ,e.ines the availale RP .iles an, Pet -o,lesB an, the Pet 'lasses to al= @4hi'h lti-atel= ,eter-ine the so.t4are an,


'19

www%red#at%com

'on.igrationB/ ost ros are se, to ,e.ine Mrea,=2rn s=ste-s as e$laine, in the Provisioning Recommendations se'tion/ ost ros 'an e neste,/ hen a ost ro gets a parent assigne, all ,e.ine, o?e'ts are inherite, to the child. See the se'tion Host 7roup Scenarios .or an e$lanation o. the a,vantages o. the neste, ost ro .eatre/ (he .ollo4ing grahi' gives an overvie4 o. all o?e'ts that 'an e ,e.ine, in a single ost ro/ As =o 'an see host gros are a )e= ele-ent o. Satellite 6 asse-ling -an= entities 4e have 'on.igre, earlier together/

Host 7roup  Parent hen a arent is assigne, to a ost ro all ,e.ine, o?e'ts are inherite, = that arent/  Aame Enter the na-e o. the ost ro/  2ifec-cle Environment Sele't the li.e'='le environ-ent to 4hi'h the ost rovisione, 4ith this ost ro shol, elong/  4ontent $iew Io must sele't a li.e'='le environ-ent *efore =o 'an sele't a 'ontent vie4/

www%red#at%com

'1=


 Puppet Environment hen a 'ontent vie4 is sele'te, the Re, at Satellite ato-ati'all= assigns the Pet environ-ent that elongs to it/ (he Pet Classes ta is #idden ntil a *i.e'='le Environ-ent an, a Content ;ie4 are 'hosen/  Puppet 4lasses Assign Pet Classes to a ost ro/ Pet o,les o.ten 'ontain s'lasses that e$ist onl= .or the internal Pet -o,le str'tre an, are not inten,e, .or ,ire't 'ons-tion/ S'lasses that are not inten,e, .or ,ire't 'ons-tion 'an e e$'l,e, = a .ilter so onl= 'lasses that are inten,e, to e assigne, to a host 'an e seen/ o,le e$a-le: nt -ani.ests init/ install/ ara-s/

(he Re, at Satellite Server o..ers to assign an= o. the .ollo4ing 'lasses to a host or host gro: nt nt::install nt::ara-s

(o e$'l,e the 'lasses nt::install an, nt::ara-s .ro- the sele'tion sin'e the= shol, not e assigne, alone to a host or host gro 0 'reate the .ollo4ing .ile  5/ Create .ile 'at __ E%# ` srshare.ore-an'on.igignore,environ-ents/=-l :.ilters:  Qr=rege$ Hara-sH  Qr=rege$ HinstallH E%#

 4onfig 7roups A,, a Con.ig ro to a ost ro/


'1&

www%red#at%com

hen Pet 'lasses are assigne, to a Con.ig ro all Pet 'lasses availale 'an e assigne, to the 'lass no -atter throgh 4hi'h 'ontent vie4 or Pet environ-ent the= are -a,e availale/ hen the Con.ig ro is assigne, to a ost ro onl= the Pet 'lasses availale in the Pet environ-ent are reall= se, = the host  host gro/ Pet 'lasses that 'annot e se, e'ase the= are not availale in the Pet environ-ent shol, e gre=e, ot/

Aetwork

 Domain Sele't a Do-ain/ (he Do-ain is se, to 'on.igre a osts #DN/ . the DNS Casle .eatre is 'on.igre, the asso'iate, ,o-ain is se, to 'reate an A re'or,/  Su*net Snets are availale to e sele'te, onl- if the= are assigne, to the Do-ain/  Realm hen a real- is 'on.igre, a 'o-ter a''ont 'an e ato-ati'all= 'on.igre,/ Aote, (his .eatre is not 'overe, in this soltion gi,e/

Operating S-stem

 "rc#itecture Sele't the %erating S=ste- ar'hite'tre/  Operating S-stem

www%red#at%com

''0


All %erating S=ste-s that o..er the sele'te, ar'hite'tre are ,isla=e, .or sele'tion/  Partition 3a*le %nl= the artition tales that 4ere reviosl= assigne, to the %erating S=ste- 'an e sele'te,/

Parameter

Para-eters o. a ost ro level are ,e.ine, here/ e are sing the ara-eter ptable0 .or e$a-le to ,e.ine 4hi'h artition tale sniet shol, e se, to set  a se'on, har, ,is)/ hen a ara-eter is 'hange, on a ost ro it is also ,ire'tl= inherite, = hosts alrea,= rovisione, throgh the ost ro an, also = an= host assigne, to the ost ro a.ter rovisioning/

"ctivation !e-s

A 'o--asearate, list o. a'tivation )e=s is a,,e, here/ (he A'tivation Le=s ta is hi,,en ntil a *i.e'='le Environ-ent an, a Content ;ie4 are sele'te,/ (he A'tivation )e= ta lets =o a,, the ara-eter kt_actiation_keys 4ith a se'i.ie, vale 4hi'h is se, = the sniet subscription_manager_register ,ring the rovisioning hase/


''1

www%red#at%com

2ocations

Ever= lo'ation 4here the ost ro is rovisione, is a,,e, here/

Organiations

&e'ase ost ros 'an e share, et4een organiations =o nee, to a,, the organiations that se the ost ro/

Sate""ite  Host 3rou& Scenarios (he .ollo4ing se'tion ,es'ries -ltile host gro s'enarios/ &e'ase there is no onesie.itsall aroa'h an, ea'h 'sto-er environ-ent has ,i..erent reGire-ents an, riorities 4e ,es'rie .or ,i..erent host gro s'enarios 4ith their in,ivi,al a,vantages an, ,isa,vantages/ (he ri-ar= ,i..eren'e et4een s'enarios & C an, D is that ea'h one o..ers a ,i..erent erse'tive on ho4 to str'tre or searate =or host an, ali'ation ,ivisions/ %ne s'enario that 'ol, 'o-e ver= 'lose to a er.e't 4orl, 4ol, e to 'o-ine these three s'enarios an, in'l,e a -lti,i-ensional vie4 o. this set/ Un.ortnatel= e'ase this aroa'h is 'rrentl= not ossile 4e 'annot ,o'-ent it here/ . =o s4it'he, to a -lti,i-ensional vie4 the 'rrent 1:1 relationshi et4een host gros an, hosts 4ol, have to e re-ove,/

Aote, i$ing these ,i..erent hierar'h= t=es is ossile an, -ight e the est otion in a t=i'al 'sto-er environ-ent 4here so-e server roles shol, e ,ivi,e, into one o. these t=es an, other server roles into another/ #or e$a-le =o 'ol, se the siness vie4 in s'enario C www%red#at%com

'''


.or siness ali'ations t ,ivi,e in.rastr'tre servi'es ase, on s'enario D or even A/ Io 'an se different structure t-pes side)*-)side *ut not for t#e same #ost groupC / (he .ollo4ing .or s'enarios are ,es'rie, in .rther ,etail elo4:

Scenario A) Flat Host Group Structure A t=i'al starting oint .or sing host gros is to start 4ith a 'o-letel= .lat str'tre/ n this aroa'h all host gros are 'reate, si,e = si,e an, no nesting is se,/ . =or environ-ent is si-ilar to or ACE sa-le s'enario an, =o are sing ,i..erent li.e'='le stages an, -ltile 'o-inations o. ali'ations an, %S versions =o nee, to 'reate host gros .or ea'h relevant 'o-ination o. these ! ite-s/ (he rose o. an a'tivation )e= is to assign a 'ontent vie4 or 'o-osite 'ontent vie4 to a arti'lar host/ Sin'e the asso'iation 4ith a arti'lar li.e'='le environ-ent ,eter-ines 4hi'h 'ontent vie4s are availale insi,e this environ-ent =o must have an a'tivation )e=/ n or sa-le .lat host gro str'tre 4e are sing the .ollo4ing na-ing 'onvention: _ *C EN; `  _ in.ra  i `  _ ro.ile `  _ %S release an, ar'hite'tre `

Io -ight nee, to a,at this to =or nee,s/

"dvantages (he ri-ar= a,vantage o. a .lat str'tre is the li-ite, 'o-le$it= e'ase =o avoi, sing


''5

www%red#at%com

hierar'hi'al an, inheritan'e -o,els/ n an environ-ent 4ith a high ,egree o. stan,ar,iation or 4ith onl= a .e4 ,i..erent roles t=es or hosts this s'enario is the est otion/

Disadvantages (he -ain ,isa,vantage is not sing inheritan'e/ (here.ore =o 'ol, en,  'reating a hge n-er o. nearl= si-ilar host gros that have -ore 'o--onalities than ,i..eren'es/

Scenario B) Lifecycle-Environment Focused Hierarchical Structure (his s'enario ses inheritan'e/ t ,ivi,es the li.e'='le environ-ents insi,e the .irst level o. the hierar'h= tree/ (hen the se'on, level slits ot the %S release version an, the ar'hite'tre/ #inall= the thir, level 'ontains the role t=e/ Io 'ol, s4a the se'on, an, thir, level/ (he i,ea ehin, this aroa'h is that the to level 'ontains the li.e'='le environ-ents 4hi'h are reGire, to sele't a arti'lar 'ontent vie4 that has een ro-ote, into this li.e'='le environ-ent/ All li.e'='leenviron-entse'i.i' ara-eters are assigne, to the .irst hostgro level/ (his aroa'h 'an e an a,vantage in 'sto-er s'enarios 4here resonsiilities are ,ivi,e, a-ong li.e'='le environ-ents @.or e$a-le i. there is a ,e,i'ate, o4ner .or the Dev A an, Pro, stagesB/ (he se'on, level ,e.ines the arti'lar 'ore il, ,e.inition @.or e$a-le .or RE* 7B/ All 'o--on 'on.igrations elonging to the in,ivi,al 'ore il, ,e.initions are alie, here/ (he %erating S=ste- an, a'tivation )e=s 4hi'h enale a''ess to these ss'ritions an, reositories are sele'te, an, alie, here/ (he thir, level a,,s the ali'ationse'i.i' 'on.igrations an, ara-eters an, ,e.ines the final ,e.inition o. the target s=ste-s/ (=i'all= the 'on.igration gros 4ith levels li)e this e$a-le are se, to si-li.= the Pet 'on.igration -anage-ent in this area/

"dvantages (he -ain a,vantage o. this aroa'h is that the inheritan'e -o,els .ollo4 the relationshi -o,els in Satellite 6/ (he li.e'='le environ-ent ,e.ines the availale 'ontent vie4s/ Ptting the oerating s=ste-  'ore il, on to o. the ali'ation level allo4s etter stan,ar,iation on the %S level/ oreover this s'enario lets =o searate resonsiilities a'ross li.e'='le stages/

Disadvantages

www%red#at%com

''8


%ne ,isa,vantage is that this hierar'hi'al str'tre -ight not e intitive .or so-eo,= 4ho is loo)ing .ro- the to ,o4n either .ro- an ali'ation @sinessB or .ro- a hosterse'tive/ A,,itionall= this s'enario in'reases the -aintenan'e e..orts .or all ali'ationrelevant 'on.igrations e'ase ea'h ali'ation o4ner no4 has  to 6 host gros to -anage @ass-ing that there are ! li.e'='le stages an, 2 ,i..erent 'oreil, versionsB/ (his aroa'h -ight e est .or a,van'e, Pet sers 4ho are .ollo4ing Pet est ra'ti'es e'ase all Pet 'on.igrations are oth li.e'='lestage an, %St=e in,een,ent/

Scenario C) Business View n this s'enario the host gro hierar'h= is .ollo4ing the siness or ali'ation'entri' vie4 4hi'h loo)s .ro- the to @ali'ation levelB ,o4n @oerating s=ste- + li.e'='le stageB/ n or e$a-le @rovi,e, aove an, ,o'-ente, in this soltion gi,eB 4e have a,,e, an a,,itional la=er o. searation et4een the to an, otto- la=ers/ (his la=er lets =o gro the ,i..erent server t=es @.or e$a-le the a')en, an, .ronten, serversB e'ase this inet4een la=er either a..e'ts or is a..e'te, = the lo'ation an, net4or) relationshi @.ronten, servers are insi,e a DJ t a')en, servers are notB/

"dvantages (his aroa'h allo4s s to segregate ,i..erent relevant 'hara'teristi's o. the .inal hosts an, sho4 ho4 the .inal hosts are asso'iate, 4ith the host gros in the otto- level o. the hierar'h=/ t allo4s a,,itional la=ers .or segregating net4or) or se'rit= an, etter sorts the Pet.o'se, -anage-ent o. 'o-le$ 'on.igrations @ass-ing that Pet -o,les are %Sin,een,ent an, sort -ltitier ,e.initions sing a roles  ro.ile atternB/

Disadvantages (he ,isa,vantage @ase, on the -an,ator= assign-ent o. a arti'lar li.e'='le environ-ent to a 'ontent vie4B is that the lo4est hierar'h= level must in'l,e the li.e'='le stage or needs to *e the li.e'='le stage @i. =o a,, a ,e,i'ate, la=er at the otto-B/ (here.ore 'ontent or 'o-osite 'ontent vie4s 'an e assigne, onl= to hosts at this level/ (he other levels are ri-aril= .or ara-eters an, 'on.igrations share, a'ross the inherent o?e'ts/

Scenario D) Location based (his aroa'h is est .or gloal 'sto-ers 4ho have a lot o. .e,erate, lo'ations @.or e$a-le in the retail verti'alB/ n these 'ases it -a)es sense to str'tre the host gros ase, on lo'ations/


''(

www%red#at%com

"dvantages (he -ain a,vantage is that the ,istrition o. lo'ations  ,ata'enters an, the resor'es insi,e the- is aligne, to the host gro str'tre/ . a lo'ation is asso'iate, to a Casle an, a,,itionall= to arti'lar host gros the ,ata'enter toolog= an, host gro str'tre .ollo4s the sa-e logi'/ n a s'enario 4here the ,ata'enter toolog= or .e,erations ,eter-ine -an= other attrites this aroa'h 4ol, e the est otion/

Disadvantages (his s'enario 'o-li'ates the stan,ar,iation o. 'ore il,s an, ali'ations a'ross lo'ations or ssi,iaries/ n 'o-le$ environ-ents 4ith a hge n-er o. ali'ations an, ,i..erent 'on.igrations the n-er o. host gro 'hanges that are reGire, .or ea'h 'on.igration 'hange in'reases signi.i'antl=/ n or soltion gi,e 4eOve ,e'i,e, to se s'enario & @e$laine, in .rther ,etail elo4B/

Create Host Groups S'enario &B *i.e'='leEnviron-ent.o'se, hierar'hi'al str'tre is the hostgro s'enario i-le-ente, in this soltion gi,e ,o'-ent/ (o 'reate a ost ro go to: 5/ Configure ➤ ost groups ➤ !ew ost $roup . 1pecify the information according to the table below @(he se'i.ie, entries are ,e.alts that =o 'an 'hange 4hen a ne4 host is rovisione,/B 7. 1ubmit #or the soltion gi,e 'reate the .ollo4ing ost ros:

2ifec-cle Environments O*ect Host 7roup

www%red#at%com

Parent: Na-e: *i.e'='le Environ-ent: Content ;ie4: Pet Environ-ent: Casle Settings: Content Sor'e: Pet CA:

$alue ,ev ,ev

satellite/e$a-le/'osatellite/e$a-le/'o-

''6


Pet aster:

Puppet 4lasses

Classes: Con.ig ro:

Aetwork

Do-ain: Snet:

Operating S-stem

Ar'hite'tre: %erating S=ste-: e,ia:

satellite/e$a-le/'o-

Partition tale: Root ass4or,:

Parameter 2ocation

-ni'h -ni'h,-

Organiation

ACE

"ctivation !e-

Aote, Create the sa-e ost ro .or the >a &rod5 %eb2de'5 %eb2>a5 %eb2uat an, %eb2&rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 5/ ost ro a/ Na-e / *i.e'='le Environ-ent via #ammer, %R3ACE3 *%CA(%NS3-ni'h-ni'h,-oston3 ha--er li.e'='leenviron-ent list organiation 3\%R]3  a4) # 33 HYY:,igit:[[ \rint 2]H  se, sH H  4hile rea, *CEN; ,o i. YY \*CEN;]  3*irar=3 [[V then 'ontine .i ha--er hostgro 'reate na-e @ e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[H B X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X li.e'='leenviron-ent 3\*CEN;]3 X et'aro$=i, 1 X etro$=i, 1 X 'ontentsor'ei, 1


''9

www%red#at%com

,one

Red Hat Enterprise 2inu? 6

Host 7roup

Puppet 4lasses

O*ect

$alue

Parent: Na-e: *i.e'='le Environ-ent: Content ;ie4: Pet Environ-ent: Casle Settings: Content Sor'e: Pet CA: Pet aster:

,ev rhel6server$"66 ,ev 'vosrhel6server @ato-ati'all= assigne,B satellite/e$a-le/'osatellite/e$a-le/'osatellite/e$a-le/'o-


'.g'oreil,

Aetwork

Do-ain: Snet:

e$a-le/'o172/2/96/02

Operating S-stem


$"66 Re,at 6/6 ACE*irar=Re,atServerRe,atE nterrise*in$6ServerLi')start$"66 6Server talea'-eosrhelserver ^^^^^^^^


Parameter 2ocation

-ni'h -ni'h,-

Organiation

ACE

"ctivation !e-

a't,evosrhel6server$"66

Aote, At the ti-e this ,o'-ent 4as 4ritten the Con.ig ro cfg-corebuild 'ol, not e assigne, via ha--er/ Please a,, it manuall- to ever- Red Hat Enterprise 2inu? Host 7roup i. the ha--er 'o--an, is se, to 'reate the str'tre/ Create the sa-e ost ro .or the >a &rod environ-ent/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro

www%red#at%com

''=


a/ Na-e / *i.e'='le Environ-ent '/ Content;ie4 2/ Pet Classes a/ '.g'oreil, @has to e a,,e, again ,e to *i.e'='le Environ-ent 'hangeB !/ A'tivation Le= a/ 'hange the environ-ent art

via #ammer, AT%R363 N%R353 %S@ha--er ott 'sv os list  a4) # 33 3Re,at \AT%R] \rint X2Ve$it]3B ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-3 P(A&*ENAE3talea'-eosrhelserver3 D%AN3e$a-le/'o-3 .or *CEN; in DE; A PR%D ,o i. YY \*CEN;]  3*irar=3 [[V then 'ontine .i *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]B \rint X1]3B ha--er hostgro 'reate na-e 3rhel\AT%R]server\ARC]3 X -e,i- 3\%R]*irar=Re,atServerRe,atEnterrise*in$ \AT%R]ServerLi')start\ARC]\AT%R]\N%R]3 X arenti, \ParentD] X ar'hite'tre 3\ARC]3 X oeratings=ste- 3\%S]3 X artitiontale 3\P(A&*ENAE]3 X snet 3\D%AN]3 X ,o-ain 3\D%AN]3 X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X 'ontentvie4 3'vosrhel\AT%R]Server3 X environ-enti, @ha--er ott 'sv environ-ent list erage 999  a4) # 33 3L(\%R]\*CEN;]'vosrhel\AT%R]Server \rint X1]3B gD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]B \rint X1]3B ha--er hostgro setara-eter X hostgroi, 3\gD]3 X na-e 3)ta'tivation)e=s3 X vale 3a't\*CEN;*%ER]osrhel\AT%R]server\ARC]3 ,one


''&

www%red#at%com

Red Hat Enterprise 2inu? 9

Host 7roup

Puppet 4lasses

O*ect

$alue


,ev rhel7server$"66 ,ev 'vosrhel6server @ato-ati'all= assigne,B satellite/e$a-le/'osatellite/e$a-le/'osatellite/e$a-le/'o-


'.g'oreil,

Aetwork

Do-ain: Snet:

e$a-le/'o172/2/96/02

Operating S-stem


$"66 Re,at 7/1 ACE*irar=Re,atServerRe,atE nterrise*in$7ServerLi')start$"66 7Server


talea'-eosrhelserver ^^^^^^^^

Parameter 2ocation

-ni'h -ni'h,- oston

Organiation

ACE

"ctivation !e-

a't,evosrhel7server$"66

Aote, At the ti-e this ,o'-ent 4as 4ritten the Con.ig ro cfg-corebuild 'ol, not e assigne, via ha--er/ Please a,, it manuall- to ever- Red Hat Enterprise 2inu? Host 7roup i. the ha--er 'o--an, is se, to 'reate the str'tre/ Create the sa-e ost ro .or the >a &rod5 %eb2de'5 %eb2>a5 %eb2uat an, %eb2&rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e / *i.e'='le Environ-ent '/ Content;ie4 2/ Pet Classes www%red#at%com

'50


a/ '.g'oreil, @has to e a,,e, again ,e to *i.e'='le Environ-ent 'hangeB !/ A'tivation Le= a/ 'hange the environ-ent art

via #ammer, AT%R373 %S@ha--er ott 'sv os list  a4) # 33 3Re,at \AT%R] \rint X2Ve$it]3B ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-3 P(A&*ENAE3talea'-eosrhelserver3 D%AN3e$a-le/'o-3 ha--er li.e'='leenviron-ent list organiation 3\%R]3  a4) # 33 HYY:,igit:[[ \rint 2]H  se, sH H  4hile rea, *CEN; ,o i. YY \*CEN;]  3*irar=3 [[V then 'ontine .i *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]B \rint X1]3B ha--er hostgro 'reate na-e 3rhel\AT%R]server\ARC]3 X -e,i- 3\%R]*irar=Re,atServerRe,atEnterrise*in$ \AT%R]ServerLi')start\ARC]\AT%R]Server3 X arenti, \ParentD] X ar'hite'tre 3\ARC]3 X oeratings=ste- 3\%S]3 X artitiontale 3\P(A&*ENAE]3 X snet 3\D%AN]3 X ,o-ain 3\D%AN]3 X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X 'ontentvie4 3'vosrhel\AT%R]Server3 X environ-enti, @ha--er ott 'sv environ-ent list erage 999  a4) # 33 3L( \%R]\*CEN;]'vosrhel\AT%R]Server \rint X1]3B gD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]B \rint X1]3B ha--er hostgro setara-eter X hostgroi, 3\gD]3 X na-e 3)ta'tivation)e=s3 X vale 3a't\*CEN;*%ER]osrhel\AT%R]server\ARC]3 ,one

.eta Parent


'51

www%red#at%com

Host 7roup

Host 7roup

O*ect

$alue

Parent: Na-e: *i.e'='le Environ-ent:

rhel6server$"66 infra ,ev

O*ect

$alue

Parent: Na-e: *i.e'='le Environ-ent:

rhel7server$"66 infra ,ev

Aote, Create the sa-e ost ro .or the >a an, &rod environ-ents .or r#el6)server)?=668 an, r#el9)server)?=668 / Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e via #ammer, AT%R373 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-3 .or *CEN;*%ER in ,ev Ga ro, ,o ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]B \rint X1]3B ha--er hostgro 'reate na-e 3in.ra3 X arenti, \ParentD] X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 ,one

AT%R363 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-oston3 .or *CEN;*%ER in ,ev Ga ro, ,o ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]B \rint X1]3B ha--er hostgro 'reate na-e 3in.ra3 X arenti, \ParentD] X

www%red#at%com

'5'


organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 ,one

7itserver O*ect

$alue


,evrhel7server$"66in.ra gitserver ,ev ''vin.ragitserver @sele'te, ato-ati'all=B

Puppet 4lasses


git::server

Aetwork

Do-ain: Snet:

@inherite,B @inherite,B

Operating S-stem


@inherite,B @inherite,B @inherite,B


@inherite,B ^^^^^^

tale

git

Host 7roup

Parameter


2ocation

-ni'h -ni'h,-

Organiation

ACE

"ctivation !e-

a't,evin.ragitserver$"66

Aote, Create the sa-e ost ro .or the >a an, &rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e / *i.e'='le Environ-ent 2/ Pet Classes refarc#)feed*ack+red#at%com

'55

www%red#at%com

a/ Resele't the Pet 'lasses @the= have to e sele'te, again e'ase the Pet Environ-ent 'hange,B !/ A'tivation Le=

via #ammer, AT%R373 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-3 .or *CEN; in DE; A PR%D ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]Xin.raB \rint X1]3B ha--er hostgro 'reate na-e 3gitserver3 X arenti, \ParentD] X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X 'ontentvie4 3''vin.ragitserver3 X environ-enti, @ha--er ott 'sv environ-ent list erage 999  a4) # 33 3L(\%R]\*CEN;]''vin.ragitserver \rint X1]3B X et'lasses Hgit::serverH gD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]XgitserverXin.raB \rint X1]3B ha--er hostgro setara-eter X hostgroi, 3\gD]3 X na-e 3)ta'tivation)e=s3 X vale 3a't\*CEN;*%ER]in.ragitserver$"663 ,one

4ontainer#ost

Host 7roup

Puppet 4lasses

www%red#at%com

O*ect

$alue


,evrhel7server$"66in.ra 'ontainerhost ,ev ''vin.ra'ontainerhost @sele'te, ato-ati'all=B


,o')er @inherite,B


'58


Aetwork

Do-ain: Snet:


Operating S-stem




Li')start ,e.alt ^^^^^^

selin$

en.or'ing

Parameter 2ocation

-ni'h -ni'h,-

Organiation

ACE

"ctivation !e-

a't,evin.ra'ontainerhost$"66

Aote, Create the sa-e ost ro .or the >a an, &rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e / *i.e'='le Environ-ent 2/ Pet Classes a/ Resele't the Pet 'lasses @the= have to e sele'te, again e'ase the Pet environ-ent 'hange,B !/ A'tivation Le= via #ammer, AT%R373 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-3 .or *CEN; in DE; A PR%D ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]Xin.raB \rint X1]3B ha--er hostgro 'reate na-e 3'ontainerhost3 X arenti, \ParentD] X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X 'ontentvie4 3''vin.ra'ontainerhost3 X environ-enti, @ha--er ott 'sv environ-ent list erage 999  a4) # 33 3L(


'5(

www%red#at%com

\%R]\*CEN;]''vin.ra'ontainerhost \rint X1]3B X et'lasses H,o')erH gD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]X'ontainerhostXin.raB \rint X1]3B ha--er hostgro setara-eter X hostgroi, 3\gD]3 X na-e 3)ta'tivation)e=s3 X vale 3a't\*CEN;*%ER]in.ra'ontainerhost$"663 ,one

4apsule

Host 7roup

O*ect

$alue


,evrhel7server$"66in.ra 'asle ,ev ''vin.ra'asle @sele'te, ato-ati'all=B @inherite,B @inherite,B @inherite,B

Puppet 4lasses


Aetwork

Do-ain: Snet:

Operating S-stem




Li')start ,e.alt

Parameter 2ocation

-ni'h

Organiation

ACE

"ctivation !e-

a't,evin.ra'asle$"66

Aote, www%red#at%com

'56


Create the sa-e ost ro .or the >a an, &rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e / *i.e'='le Environ-ent 2/ Pet Classes a/ Resele't the Pet 'lasses @the= have to e sele'te, again e'ase the Pet environ-ent 'hange,B !/ A'tivation Le=

via #ammer, AT%R373 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h3 .or *CEN; in DE; A PR%D ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]Xin.raB \rint X1]3B ha--er hostgro 'reate na-e 3'asle3 X arenti, \ParentD] X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X 'ontentvie4 3''vin.ra'asle3 X environ-enti, @ha--er ott 'sv environ-ent list erage 999  a4) # 33 3L(\%R]\*CEN;]''vin.ra'asle \rint X1]3B gD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]X'asleXin.raB \rint X1]3B ha--er hostgro setara-eter X hostgroi, 3\gD]3 X na-e 3)ta'tivation)e=s3 X vale 3a't\*CEN;*%ER]in.ra'asle$"663 ,one

2og#ost

Host 7roup

O*ect

$alue

Parent: Na-e: *i.e'='le Environ-ent: Content ;ie4: Pet Environ-ent: Casle Settings:

,evrhel6server$"66in.ra loghost ,ev ''vin.raloghost @sele'te, ato-ati'all=B


'59

www%red#at%com

Content Sor'e: Pet CA: Pet aster:


Puppet 4lasses


loghost::server

Aetwork

Do-ain: Snet:


Operating S-stem





Parameter 2ocation

-ni'h -ni'h,-

Organiation

ACE

"ctivation !e-

a't,evin.raloghost$"66

Aote, Create the sa-e ost ro .or the >a an, &rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e / *i.e'='le Environ-ent 2/ Pet Classes a/ Resele't the Pet 'lasses @the= have to e sele'te, again e'ase the Pet environ-ent 'hange,B !/ A'tivation Le= via #ammer, *%%S( AT%R363 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-3 .or *CEN; in DE; A PR%D ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!  

www%red#at%com

'5=


\*CEN;*%ER]Xrhel\AT%R]server\ARC]Xin.raB \rint X1]3B ha--er hostgro 'reate na-e 3loghost3 X arenti, \ParentD] X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X 'ontentvie4 3'vosrhel6Server3 X environ-enti, @ha--er ott 'sv environ-ent list erage 999  a4) # 33 3L(\%R]\*CEN;]'vosrhel\AT%R]Server \rint X1]3B gD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]XloghostXin.raB \rint X1]3B ha--er hostgro setara-eter X hostgroi, 3\gD]3 X na-e 3)ta'tivation)e=s3 X vale 3a't\*CEN;*%ER]in.raloghost$"663 ,one

A,, 5atcher-3alue .or the S-art Class Para-eter mode to vale ser'er ase, on the ost ro:  Con.igre ` Pet Classes ` sele't log#ost -o,le  Sele't the (a: S-art Class Para-eter  Sele't the S-art Class Para-eter mode  ar) the Override 'he')o$  A,, at'her;ales d at'h: hostgro,evrhel6server$"66loghost d ;ale: server d at'h: hostgroGarhel6server$"66loghost d ;ale: server d at'h: hostgroro,rhel6server$"66loghost d ;ale: server


'5&

www%red#at%com

www%red#at%com

'80



'81

www%red#at%com

Aote, At the ti-e o. 4riting a at'her;ale ha, to e a,,e, .or ever= "oghost ost ro entr=/ acmewe*

Host 7roup

O*ect

$alue


,evrhel7server$"66 a'-e4e 4e,ev ''va'-e4e @sele'te, ato-ati'all=B @inherite,B @inherite,B @inherite,B

Puppet 4lasses


Aetwork

Do-ain: Snet:


Operating S-stem





Parameter 2ocation


Organiation

ACE

"ctivation !e-

Aote, Create the sa-e ost ro .or the we*)>a5 %eb2uat an, %eb2&rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e / *i.e'='le Environ-ent

www%red#at%com

'8'


via #ammer, AT%R373 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-oston3 .or *CEN; in eDE; eA eUA( ePR%D ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]B \rint X1]3B ha--er hostgro 'reate na-e 3a'-e4e3 X arenti, \ParentD] X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X 'ontentvie4 3''via'-e4e3 X environ-enti, @ha--er ott 'sv environ-ent list erage 999  a4) # 33 3L(\%R]\*CEN;]''via'-e4e \rint X1]3B ,one

acmewe* frontend O*ect

$alue


,evrhel7server$"66a'-e4e .ronten, 4e,ev ''va'-e4e @sele'te, ato-ati'all=B

Puppet 4lasses


a'-e4e::.ronten,

Aetwork

Do-ain: Snet:


Operating S-stem





Host 7roup


Parameter


'85

www%red#at%com

2ocation


Organiation

ACE

"ctivation !e-

a't,evia'-e4e$"66

Aote, Create the sa-e ost ro .or the we*)>a5 %eb2uat an, %eb2&rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e / *i.e'='le Environ-ent 2/ Pet Classes a/ Resele't the Pet 'lasses @the= have to e sele'te, again e'ase the Pet environ-ent 'hange,B !/ A'tivation Le= via #ammer, AT%R373 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-oston3 .or *CEN; in eDE; eA eUA( ePR%D ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]Xa'-e4eB \rint X1]3B ha--er hostgro 'reate na-e 3.ronten,3 X arenti, \ParentD] X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X et'lasses Ha'-e4e::.ronten,H gD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]Xa'-e4eX.ronten,B \rint X1]3B ha--er hostgro setara-eter X hostgroi, 3\gD]3 X na-e 3)ta'tivation)e=s3 X vale 3a't\*CEN;*%ER]ia'-e4e$"663 ,one

acmewe* *ackend

Host 7roup

www%red#at%com

O*ect

$alue

Parent:

,evrhel7server$"66a'-e4e

'88


Na-e: *i.e'='le Environ-ent: Content ;ie4: Pet Environ-ent: Casle Settings: Content Sor'e: Pet CA: Pet aster:

a')en, 4e,ev ''va'-e4e @sele'te, ato-ati'all=B

Puppet 4lasses


a'-e4e::a')en,

Aetwork

Do-ain: Snet:


Operating S-stem






Parameter 2ocation


Organiation

ACE

"ctivation !e-

a't,evia'-e4e$"66

Aote, Create the sa-e ost ro .or the we*)>a5 %eb2uat an, %eb2&rod environ-ents/ Clone the ost ro an, a,at the .ollo4ing in.or-ation: 1/ ost ro a/ Na-e / *i.e'='le Environ-ent 2/ Pet Classes a/ Resele't the Pet 'lasses @the= have to e sele'te, again e'ase the Pet environ-ent 'hange,B !/ A'tivation Le= via #ammer, AT%R373 ARC3$"663 %R3ACE3 *%CA(%NS3-ni'h-ni'h,-oston3


'8(

www%red#at%com

.or *CEN; in eDE; eA eUA( ePR%D ,o *CEN;*%ER@e'ho \*CEN;]  tr HYY:er:[H HYY:lo4er:[[HB ParentD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]Xa'-e4eB \rint X1]3B ha--er hostgro 'reate na-e 3a')en,3 X arenti, \ParentD] X organiations 3\%R]3 X lo'ations 3\*%CA(%NS]3 X et'lasses Ha'-e4e::a')en,H gD@ha--er ott 'sv hostgro list erage 999  a4) #33 3@X!   \*CEN;*%ER]Xrhel\AT%R]server\ARC]Xa'-e4eXa')en,B \rint X1]3B ha--er hostgro setara-eter X hostgroi, 3\gD]3 X na-e 3)ta'tivation)e=s3 X vale 3a't\*CEN;*%ER]ia'-e4e$"663 ,one

Aote, Ever=thing is no4 reare, .or the Re, at Casle installation an, 'on.igration i. =o 4ant to set  a Re, at Casle go a') to Step ' .or ,etaile, instr'tions/

/ro'isioning a ne% host Sin'e 4e have no4 'on.igre, all reGire, Satellite 6 entities 4e 'an rovision a ne4 host to veri.= that the 'on.igration 4or)s/ As an e$a-le 4e are rovisioning a ne4 host insi,e or DJ net4or) sing the RE*7 'oreil, 'ontent vie4/ Cli') on osts ` Ne4 osts/ %n the .irst ta enter or a,at the .ollo4ing ite-s:       

Enter a hostna-e: 'oreil,test,ev1 *eave the %rganiation n'hange, @ACEB Change *o'ation to -ni'h,- Sele't the host gro: in.ra'oreil,,ev Sele't a'-erhev-ni'h,- as the ,elo=-ent target @'o-te resor'eB Change the li.e'='le environ-ent to DE; Sele't the RE*7 'oreil, 'ontent vie4: 'vosrhel7Server (he Pet environ-ent shol, e ato-ati'all= a,ate,  Sele't 'asle-ni'h/,-/e$a-le/'o- as 'ontent sor'e  Sele't 'asle-ni'h/,-/e$a-le/'o- as the Pet CA  Sele't 'asle-ni'h/,-/e$a-le/'o- as the Pet aster

www%red#at%com

'86


(he .inal Ne4 ost 'on.igration shol, loo) li)e this:

Sele't the Pet Classes ta/ &e'ase the 'on.ig gro '.g'oreil, 4as assigne, to the host gro sele'te, in the .irst ste 4e ,onOt nee, to 'hange an=thing here/


'89

www%red#at%com

Sele't the Net4or) ta an, 'hange oth Do-ain an, Snet to ,-/e$a-le/'o-/ (he P a,,ress sggestion shol, e ato-ati'all= a,ate, to the 'orreson,ing P range/

www%red#at%com

'8=


Sele't the %erating S=ste- ta/ Sin'e all ite-s liste, on this ta are alrea,= ,e.ine, in the 'orreson,ing host gro ,e.inition all =o nee, to ,o here is enter the root ass4or, .or this server/

Sele't the ;irtal a'hine ta/ ere 4e nee, to -a)e the .ollo4ing 'hanges: 5/ %tional: A,at the n-er o. virtal CPU 'ores o. the ; @4e are sing 2B 6/ A,at the virtal -e-or= o. the ; @4e are sing 2 & -ini-- is 1 &B 7/ Cli') on A,, nter.a'e to a,, a net4or) inter.a'e to this ; a/ Enter a na-e @eth0B / Sele't the 'orreson,ing net4or) @here: or ;*AN 99B "/ Cli') on A,, ;ol-e a/ Enter the ,is) sie @or 'sto-ie, artition tale talea'-eosrhelserver reGires at least 20 &B/ e are sing 25 & @= ,e.alt thin rovisioning is se, an, as long as the Preallo'ate Dis) 'he')o$ is not sele'te, the real ,is) sa'e 'ons-tion 4ill e lo4er than 25 &B/ / Sele't the ootale ra,io tton


'8&

www%red#at%com

Aote, t -ight e 'on.sing/ n a,,ition to the thir, ta Net4or) 4e nee, to e$li'itl= a,, a net4or) inter.a'e here/ Io -st ,o the sa-e 4ith the vol-e/ o4ever i. the rovisioning -etho, as 'on.igre, in the oerating s=ste- ta is net4or) ase, instea, o. i-age ase, an, these t4o ite-s are reGire, to 'reate a virtal -a'hine the 'rrent version o. Satellite 6 ,oes not ato-ati'all= rovi,e e-t= or re,e.ine, .iel,s to 'on.igre these reGire, vales/ e leave the last t4o tas @Para-eters an, A,,itional n.or-ationB n'hange, an, then 'li') S-it/ A.ter a 'ole o. -intes or ne4l= 'reate, host shol, e liste, n,er the osts ` Content osts ta/

www%red#at%com

'(0


Step 8: Map your IT organization and roles to your Satellite setup ( organiations are in a state o. 'onstant .l$/ n site o. this environ-ent -an= ( organiations ase their 'rrent str'tre on arti'lar te'hnologies or ro,'ts/ (his t=e o. str'tring 'an severel= li-it an ( organiation sin'e -an= so.t4are ven,ors have signi.i'antl= e$an,e, their ro,'t se 'ases an, the ro,'ts the= o..er/ Pls -an= e-erging te'hnologies have ,isrte, ho4 'sto-ers 4or) 4ith arti'lar ro,'ts s'h as so.t4are,e.ine, net4or)s or storage/ A t=i'al ( organiation is ,ivi,e, into nits 4ith ,i..erent roles an, resonsiilities/ Deen,ing on the sie an, str'tre o. an ( organiation the roles an, resonsiilities 'an e organie, in -an= ,i..erent 4a=s/ So-e o. the- are ,ire'tl= relate, to ho4 Re, at Satellite Server is se, so-e o. the- not/ n the .ollo4ing se'tion 4e 4ill ,es'rie so-e 'o--on roles an, ho4 Re, at Satellite sorts the-/

Ho% Red Hat Sate""ite #ets .ou Se&arate Res&onsibi"ities Re, at Satellite o..ers varios otions to sort roles/ Re, at Satellite:  Sorts oth users and roles / Satellite 'an assign ,e.alt organiations an, environ-ents to sers so that 4hen sers 'reate ne4 entities these ,e.alts are ato-ati'all= se,/ Users 'an also e assigne, a ,e.alt role 4hi'h ,e.ines their er-issions an, a''ess levels/ UsersO assigne, roles give the- rights to see an, -anage organiations an, environ-ents/  Sorts aggregating ,i..erent organiation @nitsB 4ithin one single Satellite server = sing Re, at Satellite .ulti)Org 'on'ets  Provi,es the 'aailit= to isolate the o4nershi o. s=ste-s @,elo=-ent targetsB .rothe a'tal 'ontent @,elo=-ent 'ontent s'h as %S or ali'ation 'ontentB  Allo4s the in,een,ent li.e'='le -anage-ent o. 4ontent $iews to sort in,ivi,al o4nershi o. arti'lar s=ste- sta') la=ers @.or e$a-le the %S lat.or- an, ali'ation la=ersB/ Satellite also sorts aggregating .or-erl= in,een,ent o4nershis into 4omposite 4ontent $iews/  %..ers in,een,ent so.t4are lifec-cle environment aths to 'reate in,een,ent li.e'='le stages an, environ-ents .or in,ivi,al o4nershi an, release '='les  Sorts the granular definition o. a''ess levels .or all o?e'ts -anage, 4ithin Satellite/ (his .eatre sorts role)*ased access control RB"4C 'on'ets/


'(1

www%red#at%com

Sate""ite -sers and #$A/ Authentication A Satellite 6 ser ,e.ines a set o. ,etails .or in,ivi,als 4ho se the s=ste-/ Users 'an e asso'iate, 4ith organiations an, environ-ents so that 4hen the= 'reate ne4 entities the ,e.alt settings are ato-ati'all= se,/ Users 'an also have one or -ore roles atta'he, 4hi'h grant the- rights to vie4 an, -anage organiations an, environ-ents/ Re, at Satellite in'l,es the otion to se a *ight4eight Dire'tor= A''ess Proto'ol @*DAPB servi'e .or ser in.or-ation an, athenti'ation sing one or -ore *DAP ,ire'tories/ (he reGire, stes to 'on.igre *DAP athenti'ation are ,o'-ente, in the Re, at Satellite User i,e/ n or soltion gi,e 4e are not sing *DAP athenti'ation/

Red Hat Sate""ite  Ro"e27ased Access Contro" Re, at Satellite .eatres a .inegraine, a''ess 'ontrol s=ste- that allo4s =o to 'sto-ie sets o. roles to re'isel= the ,esire, allo4e, a'tions/ Ea'h a'tion on a resor'e t=e @host host 'olle'tion li.e'='le environ-ent 'ontent vie4 et'/B 'an e 'ontrolle, 4ithin ea'h role an, =o 'an restri't the in,ivi,al o?e'ts via a sear'h Ger=/ So-e re,e.ine, roles are availale 4ith a re,e.ine, set o. .ilters/ (o see this list o. re,e.ine, roles 'li') on A,-inister ` Roles:

(hese te-lates 'an e 'lone, an, a,ate, or enhan'e, to se'i.i' nee,s/ Alternativel= =o www%red#at%com

'('


'an 'reate ne4 roles .ro- s'rat'h: Start 4ith an e-t= role an, then a,, all reGire, .ilters/ #or ea'h o. the 6 ,i..erent resor'e t=es =o 'an sele't one or -ore er-issions that elong to a arti'lar resor'e t=e @e/g/ vie4 e,it 'reate ,eleteB/ n a,,ition =o 'an al= .ilters to restri't these er-issions to a arti'lar sset o. ele-ents/ #or .rther ,etails see the 'orreson,ing 'hater in the Satellite 6 User i,e: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l Useri,e 'ha Users an,Roles/ht-l

Aote, &e'ase o. its granlar -o,el .or ,e.ining roles an, ase, on PetOs o4er.l 'on.igration-anage-ent 'aailities Satellite 6 'an -anage oth oerating s=ste-s an, lat.or-s rnning on to o. Re, at Enterrise *in$/ Satellite 6 'an also e se, to -anage ali'ations t Re, at o..ers a ,e,i'ate, tool .or -anaging lat.or-s an, ali'ations Re, at %enShi.t Enterrise/

Sate""ite  R7AC Recommendations Satellite 6Os Role&ase, A''ess Control @R&ACB lets =o assign granlar er-issions an, a''ess 'ontrols to all Satellite 6 o?e'ts/ &e'ase o. the hge n-er o. o?e'ts @in,i'ate, = the 6 ,i..erent resor'e t=esB tr=ing to ,e.ine an enhan'e, er-ission set 'an e'o-e a trial an, error ?orne=/ (he .ollo4ing re'o--en,ations shol, hel =o ,e.ine 'sto- roles an, their er-issions/

Define the Expected Tasks and Responsibilities A goo, 4a= to egin is to thin) aot 4hat a arti'lar role is sose, to ,o an, 4hi'h Satellite 6 entities -ight e a..e'te, = these tas)s/ Io 'ol, thin) aot the resonsiilities o. this role an, ho4 =o 4ol, ,e.ine the or,er et4een t4o roles/ #or e$a-le i. a ser asso'iate, 4ith this role is sose, to e$e'te an a'tion li-ite, to a arti'lar sset o. an entit= =o nee, to ,e.ine this sset/ %r A an, S=sEng sa-le roles -ight hel here/ (he ,i..eren'es et4een the- ,e.ine the on,aries et4een t4o sets o. resonsiilities/ Io 'an se .ilters to li-it the asso'iate, er-issions/

Start Small and Add Permissions Step by Step . tests o. a role have not gone 4ell start 4ith a ver= li-ite, set o. er-issions an, then a,, a,,itional er-issions ste = ste/ %n'e the e$e'tion is s''ess.l revie4 =or .ilters an, 'he') i. so-e o. the- are nne'essar=/ . =o are nsre re-ove a .ilter or er-ission an, test again to see i. the e$e'tion still 4or)s/ Usall= =o nee, -ore Mvie4 er-issions an,


'(5

www%red#at%com

Me,it or M,elete er-issions/ . =o re-ove nne'essar= vie4 er-issions the n-er o. visile ite-s ,e'reases an, the 'o-le$it= o. the ser inter.a'e ,e'reases as 4ell/

Use Search Filters to Limit the Amount of Detail an= roles in a tra,itional ( organiation have a ver= li-ite, area o. resonsiilit=/ o4ever there -ight e a 4i,er area o. interest/ #or e$a-le the ali'ation server o4ner is resonsile .or the ali'ation server t -ight have an interest to see @rea,onl= a''essB the 'rrent 'ore il, ,evelo-ent to get earlier a''ess to in.or-ation aot otential 'o-ing 'hanges/ Usall= areas o. interest shol, e han,le, -ore on a 'rosstea- 'o--ni'ation an, 'ollaoration lan t the rea,onl= er-issions in Satellite 6 4ol, also hel sers get an overvie4 aot other areas o. interest/

Consider Secondary Entities Affected by a Particular Execution So-eti-es =o nee, to 'onsi,er 4hi'h se'on,ar= entities are a..e'te,/ #or e$a-le a 'ontent vie4 ro-otion ato-ati'all= 'reates ne4 @or 'hanges e$istingB Pet environ-ents .or this li.e'='le environ-ent an, 'ontent vie4 'o-ination/ (here.ore =o nee, to a,, 'reate an, e,it er-issions .or the resor'e t=e @PetB MEnviron-ent i. this role is e$e'te, to ro-ote 'ontent vie4s/ #or .rther ,etails see M Sample Role (, ualit"ssurance "C in this 'hater/

Use Predefined Roles Wherever Possible As -entione, earlier Satellite 6 shis so-e re,e.ine, roles that 'an e se, alone or as art o. a role 'o-ination/ #or .rther ,etails see MSa-le Role 2 an, MSa-le Role  in this 'hater/

RBAC Focuses on Role Shaping But Not Security control (he 'rrent .o's o. Satellite 6Os rolease, a''ess 'ontrol is -ore on role shaing in the U @so.t settingsB than on se'ring or li-iting a''ess @har, settings  en.or'e-entB to varios o?e'ts or tas)s/ (he e$a-les rovi,e, in this 'hater ri-aril= .o's on hi,ing nne'essar= o?e'ts .ro- sers 4ho are not sose, to ,eal 4ith all Satellite 6 entities/

Ty&ica" content ? #i!ecyc"e Ro"e Ty&es (here are varios 'riteria .or ,istingishing a-ong ,i..erent roles 4ithin an ( organiation/ n this soltion gi,e 4e 4ill .o's on the .ollo4ing ! t=es o. roles:

www%red#at%com

'(8


 Roles elonging to a arti'lar o4ner o. an ali'ation or se'i.i' arts o. ( servi'es @.or e$a-le ,i..erent o4ners o. Re, at Enterrise *in$ as the oerating s=steverss o4ners o. ali'ation servers an, ,ataase serversB  Roles elonging to a arti'lar stage o. the so.t4are li.e'='le/ (hese roles sall= have ,e,i'ate, reGire-ents an, tas)s an, in -ost 'ases also sing ,e,i'ate, 'o-te resor'es to .l.ill these tas)s @.or e$a-le the roles 'ol, e ,ivi,e, a-ong the lan  il,  rn hases 4here ea'h hase has one or -ore o4nersB  Roles elonging to se'i.i' tas)s that are artiall= in,een,ent .ro- the roles ,es'rie, aove @.or e$a-le se'rit= -anager li'ense -anagersB (he .ollo4ing i'tre illstrates the ,i..erent areas o. resonsiilities in a .rag-ente, ( organiation 4ith in,ivi,al roles .or ea'h li.e'='le stage o. ea'h sta') la=er:

ACME IT rgani,ation E0am&"e As -entione, in the intro,'tion or e$a-le the ACE ( %rganiation is str'tre, as .ollo4s:


'((

www%red#at%com

Pri-aril= 4e ,ivi,e resonsiilit= areas into oerating s=ste-s an, ali'ation resonsiilities/ n a,,ition 4e have a 'ole o. 'ross.n'tional roles that ta)e 'are o. varios t=i'al ( ro'ess areas/

Aote, Crrentl= =o nee, to se the er-issionsO Ds instea, o. their na-es 4hen sing ha--er C* to 'on.igre the roles an, .ilters ntil the .ollo4ing g is .i$e,: htts: gilla/re,hat /'o-sho4g/'gi fi, 12!0"" (he .ollo4ing ha--er 'o--an,s list all the availale er-issions an, their Ds: ha--er .ilter availaleer-issions erage 500  D  NAE  RES%URCE  1  vie4ar'hite'tres  Ar'hite'tre 2  'reatear'hite'tres  Ar'hite'tre !  e,itar'hite'tres  Ar'hite'tre   ,estro=ar'hite'tres  Ar'hite'tre 5  vie4a,itlogs  A,it 6  vie4athenti'ators  AthSor'e*,a 7  'reateathenti'ators  AthSor'e*,a "  e,itathenti'ators  AthSor'e*,a 9  ,estro=athenti'ators  AthSor'e*,a 10  vie4oo)-ar)s  &oo)-ar) Y///[

www%red#at%com

'(6


2!2  rhtele-etr=vie4  @is'ellaneosB 2!!  rhtele-etr='on.igrations  @is'ellaneosB 2!  ,o4nloa,oot,is)  @is'ellaneosB 

Aote, So-e o. these er-ission Ds have 'hange, 4ith Satellite 6/1 @even et4een the rivate an, li' etaB/ So i. =o have se, er-issions alrea,= =o -ight nee, to a,at thea''or,ingl=/

Sample Role 1: Satellite Admin (he Satellite A,-in is the tolevel a,-in role 4ith nli-ite, a''ess 'ontrol to all Satellite o?e'ts in'l,ing all -anage, o?e'ts @s=ste-s an, ali'ationsB/ (here.ore the least 'o-le$ set is to se the Satellite A,-in role .or all sers 4or)ing 4ith Re, at Satellite/ Ea'h ser 'an e assigne, to the A,-in role ?st = sele'ting the 'orreson,ing 'he')o$ 4hile 'reating sers n,er the Roles ta:

n a,,ition to the -aster A,-in role Satellite 6 shis 4ith t4o a,,itional re,e.ine, roles 'alle, banagerO an, bSite anagerO 4hi'h also in'l,e a lot o. rivileges an, -ight e s..i'ient .or -ost a,-inistrative tas)s as 4ell/ Althogh this set -ight e s..i'ient .or s-aller ( organiations that have onl= li-ite, @or


'(9

www%red#at%com

even noB a''ess 'ontrol or searation o. resonsiilities 4e strongl= re'o--en, that =o not se the A,-in role @or an asso'iate, serB as the er-anent ser to login an, 4or) 4ith Re, at Satellite in a rolesegregate, environ-ent/

Sample Role 2: IT Operations Manager (Read-only Role) *etOs start 4ith a si-le e$a-le/ %r ( %erations anager is not sose, to se Satellite 6 or -anage ite-s insi,e Satellite 6/ Nevertheless he 4ants to get an overvie4 aot varios ite-s han,le, = Satellite 6/ Sin'e this role is not e$e'te, to -a)e an= 'hanges a rea,onl= role 4ol, e s..i'ient .or it/

@#at /s 3#is Role Supposed to DoV  ;ie4 all Satellite 6 entities in rea,onl= -o,e

RB"4 4onfiguration for t#is Role &ase, on the e$e'te, tas)s .or this role 4e a,, the re,e.ine, 6ie%er role to this ser/ (o see the @longB list o. asso'iate, er-issions that are ,e.ine, .or this role go to A,-inister ` Roles an, 'li') on the #ilter insi,e the ;ie4er ro4/ Role Resource 3-pe

Permission

$iewer

predefined permission set

Io 'an assign this re,e.ine, role to a ne4 or e$isting ser i. =o go to A,-inister ` Users an, then sele't the e$isting ser or 'reate a ne4 one/ nsi,e the roles ta sele't the ;ie4er role:

www%red#at%com

'(=


Role 4reation >sing Hammer 42/ (he .ollo4ing ha--er 'o--an,s 'reate a ser an, role an, a,, the 'orreson,ing er-issions to the role: ha--er ser 'reate .irstna-e ?i- X lastna-e os-gr X login ?i-os-gr X -ail ?i-os-grge$a-le/'o- X ass4or, Hre,hatH X athsor'ei,313 X organiations \%R]  a,, the re,e.ine, ;ie4er role to this ser ha--er ser a,,role login ?i-os-gr role ;ie4er

Sample Role 3: License Management Owner nsi,e the Ris) K Se'rit= anage-ent tea- there is a role .or ta)ing 'are o. li'ense an, ss'rition -anage-ent to satis.= varios 'o-lian'e reGire-ents/ (hogh this -ight not e a t=i'al Satellite ser this role 'an ene.it .ro- Satellite 6 ss'rition -anage-ent an, reorting 'aailities/ Using ver= restri'tive er-ission .ilters 4e 'an hi,e the 'o-le$it= o.


'(&

www%red#at%com

-anage, o?e'ts insi,e Satellite an, ?st .o's on the se'i.i' tas)s 4ith 4hi'h this role is asso'iate,/

@#at /s 3#is Role Supposed to DoV  loa, ne4 ss'rition -ani.ests @,o4nloa,e, .ro- the Re, at Csto-er PortalB into Satellite 6  -onitor the ss'rition tiliation .or Re, at ro,'ts  -onitor the ss'rition tiliation .or !r,art= ro,'ts  -onitor the tiliation o. ,i..erent sortlevelse'i.i' ss'ritions @.or e$a-le -onitor ho4 -'h the host is sing re-i- vs/ stan,ar, sort level agree-entsB

RB"4 4onfiguration for t#is Role &ase, on the e$e'te, tas)s .or this role 4e a,, the .ollo4ing er-issions to it/ Sin'e this ,es'ries a -ini-- set o. er-issions =o -ight 4ant to a,, so-e -ore/ Role Resource 3-pe

Permission

is'ellaneos

a''ess,ashoar, -=organiations vie4statisti's

Pro,'ts an, Reositories

vie4ro,'ts

%rganiation

-ort-ani.est ,elete-ani.est atta'hss'ritions natta'hss'ritions vie4ss'ritions vie4organiations

Reorts

vie4reorts

ost-anage,

vie4hosts

(he .inal er-issions 'on.igration 'an e revie4e, n,er A,-inister ` Roles/ Sele't the role an, 'li') on #ilters:

www%red#at%com

'60


Role 4reation >sing Hammer 42/ (he .ollo4ing ha--er 'o--an,s 'reate a ser an, role an, a,, the 'orreson,ing er-issions to the role: ha--er ser 'reate .irstna-e li'ense lastna-e -anager X login li'ense-gr X -ail rootlo'alhost/lo'al,o-ain X ass4or, H$D6JhT"H X athsor'ei,O1O X organiations \%R] ha--er role 'reate na-e li'ense-gr ha--er ser a,,role login li'ense-gr role li'ense-gr  vie4hosts ha--er .ilter 'reate er-issioni,s 7 role li'ense-gr  vie4reorts ha--er .ilter 'reate er-issioni,s 12 role li'ense-gr  vie4ro,'ts ha--er .ilter 'reate er-issioni,s 209 role li'ense-gr  -=organiationsa''ess,ashoar,vie4statisti's ha--er .ilter 'reate er-issioni,s 22!!"12 role li'ense-gr  vie4ss'ritionsatta'hss'ritionsnatta'hss'ritions i-ort-ani.est,elete-ani.est ha--er .ilter 'reate er-issioni,s 2121521621721" role li'ense-gr

. 4e login as this ser 4e 'an see that the navigation ar has een signi.i'antl= re,'e, to onl= a .e4 ite-s that are relevant .or this ser:


'61

www%red#at%com

Sample Role 4: Core Build (OS) Systems Engineering (he ne$t role 4or)s insi,e the ( %erations ,eart-ent as art o. the S=ste-s Engineering tea-/ (his tea- ,e.ines an, 'reates ne4 versions o. or 'ore il, ,e.initions an, is ta)ing 'are o. the 'orreson,ing Pet 'on.igrations that are art o. the 'ore il, 'ontent vie4s/ Sin'e A is a tea- that 'onsists o. a 'ole o. tea- -e-ers 4e se user groups instea, o. in,ivi,al sers here an, assign the role to this ser gro/

@#at /s 3#is Role Supposed to DoV        

'ontrol so.t4are i-orts = sing reositor= s=n'hroniation 'ontrol Pet -o,le i-orts = sing reositor= s=n'hroniation or ,ire't sh ,e.ine 'reate an, e,it 'oreil, 'ontent vie4s lish 'ontent vie4s an, ro-ote the- to the DE; stage 4hi'h is the test stage .or ( %erations 'reate an, e,it all ite-s relevant .or rovisioning @rovisioning te-lates ara-eters i-ages artition tales et'/B il, 'reate e,it an, ,estro= hosts to test ne4 'ontent on nonersistent hosts vie4 e,it an, 'o-te to -anage the n,erl=ing 'o-te in.rastr'tre in stage DE; vie4 an, e,it host gros an, 'on.ig gros to test Pet 'on.igration 'hanges

www%red#at%com

'6'


Sin'e this is Gite a long list an, 4e 4ol, nee, to a,, -ost o. the 2! er-issions to this role 4eOve ,e'i,e, to se a role 'o-ination here/ eOve a,,e, the re,e.ine, anager role to this role an, then 'reate, an, a,,e, another role that limits the er-issions rovi,e, = the anager role to ust the DE; environ-ent/ (he n-eros er-issions o. the re,e.ine, anager role 'an e investigate, n,er A,-inister ` Roles/ Cli') on #ilters in the anager role tale ro4:

RB"4 4onfiguration for 3#is Role &ase, on the e$e'te, resonsiilities o. this role 4e a,, the .ollo4ing er-issions to it/ Sin'e this ,es'ries the -ini-- set o. er-issions =o -ight 4ant to a,, -ore/ Role Resource 3-pe

Permission

.anager

predefined permission set


'reatero,'ts e,itro,'ts ,estro=ro,'ts s=n'ro,'ts


'65

www%red#at%com

name Y cv)osZ

Content ;ie4s

vie4'ontentvie4s 'reate'ontentvie4s e,it'ontentvie4s lish'ontentvie4s ro-oteorre-ove'ontentvie4s

*i.e'='le Environ-ents

ro-oteorre-ove'ontentvie4s name Y DE$ toenviron-ents

*i.e'='le Environ-ents

vie4li.e'='leenviron-ents

Pet 'lass

vie4et'lasses 'reateet'lasses e,itet'lasses ,estro=et'lasses i-ortet'lasses


Aote, this s'reenshot sho4s onl= the a,,itional er-issions that are art o. the s=seng role/ Sin'e 4eOve a,,e, this e$ten,e, er-ission set an, also se, the re,e.ine, anager role er-issions the .inal er-ission set is an interse'tion o. oth/ Role 4reation >sing Hammer 42/ (he .ollo4ing ha--er 'o--an,s 'reate a ser an, role an, a,, the 'orreson,ing er-issions to the role:

www%red#at%com

'68


 %S S=sEng sers ha--er ser 'reate .irstna-e rett X lastna-e s=seng X login retts=seng X -ail retts=senge$a-le/'o- X ass4or, Hre,hatH X athsor'ei,313 X organiations \%R] ha--er ser 'reate X .irstna-e -i)e X lastna-e s=seng X login -i)es=seng X -ail to-s=senge$a-le/'o- X ass4or, Hre,hatH X athsor'ei,313 X organiations \%R]  'reate the s=seng gro an, assign oth sers to it ha--er sergro 'reate na-e s=sengteaha--er sergro a,,ser na-e s=sengtea- ser retts=seng ha--er sergro a,,ser na-e s=sengtea- ser -i)es=seng  'reate the s=seng role an, assign the Ga gro to it ha--er role 'reate na-e s=seng ha--er sergro a,,role na-e s=sengtea- role s=seng  a,, the re,e.ine, anager role to this gro ha--er sergro a,,role na-e s=sengtea- role .anager  Pro,'ts 'reatero,'tse,itro,'ts,estro=ro,'tss=n'ro,'ts ha--er .ilter 'reate er-issioni,s 20921021121221! role s=seng  #*(ERED: vie4'ontentvie4s'reate'ontentvie4se,it'ontentvie4s  lish'ontentvie4sro-oteorre-ove'ontentvie4s ha--er .ilter 'reate er-issioni,s 19019119219195 sear'h Hna-e  'vos^H role s=seng  #*(ERED: ro-oteorre-ove'ontentvie4stoenviron-ents ha--er .ilter 'reate er-issioni,s 20" sear'h Hna-e  DE;H role s=seng  vie4li.e'='leenviron-ents ha--er .ilter 'reate er-issioni,s 20 role s=seng

 Pet'lass vie4et'lasses'reateet'lassese,itet'lasses  ,estro=et'lassesi-ortet'lasses ha--er .ilter 'reate er-issioni,s 11511611711"119 role s=seng


'6(

www%red#at%com

Sample Role 5: Quality Assurance (QA) (his role is art o. the ( Servi'es anage-ent ,eart-ent an, is sose, to ensre that ever=thing is teste, roerl= e.ore eing ,elo=e, to ro,'tion/ A has its o4n ,e,i'ate, li.e'='le stages an, a ,e,i'ate, environ-ent 4ith 'o-te resor'es 4hi'h the= se to test all ne4 'ontent an, 'on.igrations/ (his role has onl= li-ite, e,it er-issions .or 'ontent sin'e this ,eart-ent is not sose, to .i$ isses t onl= ,ete't an, reort the-/ Sin'e A is a tea- that 'onsists o. a 'ole o. tea- -e-ers 4e are sing user groups instea, o. in,ivi,al sers an, 4e 4ill assign the role to the ser gro/

@#at /s 3#is Role Supposed to DoV  i-ort 'ontent into the A stage/ (he 'ontent has een -ar)e, as Mrea,= to test = the so.t4are ,evelo-ent an, s=ste-s engineering tea-s  'reate an, e,it composite 'ontent vie4s/ (hese CC;s shol, ,e.ine ne4 or a,ate, com*inations of immuta*le content and configuration ,e.initions in the inherent 'ontent vie4s @the CC;s shol, e$'l,e e,it er-issions on an in,ivi,al 'ontent vie4 levelB/  rea,onl= a''ess to all reGire, ite-s that A is sose, to se t not e,it  'reate il, an, ,estro= hosts to test so.t4are an, 'on.igrations

Aote, DonOt e 'on.se, e'ase the 'ontent vie4 ro-otion er-ission ses a .ilter that li-its the ro-otion to the A stage instea, o. PR%D/ . 'ontent is ro-ote, to a arti'lar stage this ne4er 'ontent is ato-ati'all= i')e,  = all hosts asso'iate, to this 'ontent vie4 an, li.e'='le environ-ent @at least the Pet 'on.igrationB/ As o. to,a= there is no 4a= to segregate 'ontent transition into a stage  environ-ent an, the ,elo=-ent itsel./ . 'ontent is ro-ote, to an environ-ent it 4ill e ato-ati'all= i')e,  all hosts asso'iate, to this environ-ent i. the ersionI)atest otion is se, insi,e Pet 'on.igrations/ Sin'e onl= the ( %erations Pro,'tion Sort tea- is resonsile .or the PR%D environ-ent the A tea- -st not e allo4e, to ro-ote 'ontent to the PR%D stage/ (his alies .or other roles in earlier stages as 4ell/ %nl= the A tea- itsel. is allo4e, to ro-ote 'ontent in the A environ-ent &U( the o4ners o. DE; are not allo4e, to/ RB"4 4onfiguration for 3#is Role &ase, on the e$e'te, resonsiilities o. this role 4e a,, the .ollo4ing er-issions to it/ Sin'e this ,es'ries a -ini-- set o. er-issions =o -ight 4ant to a,, -ore/

www%red#at%com

'66


Role Resource 3-pe

Permission

%rganiation

vie4organiations

Environ-ent

vie4environ-ents 'reateenviron-ents e,itenviron-ents ,estro=environ-ents i-ortenviron-ents

is'ellaneos

vie4tas)s vie4statisti's a''ess,ashoar,

Environ-ent

vie4environ-ents 'reateenviron-ents e,itenviron-ents ,estro=environ-ents i-ortenviron-ents

ost 'lass

e,it'lasses

ost ro

vie4hostgros e,ithostgros

ost-anage,

vie4hosts 'reatehosts e,ithosts ,estro=hosts il,hosts o4erhosts 'onsolehosts i-ioot etrnhosts

*o'ation

vie4lo'ations

Pet 'lass

vie4et'lasses

S-art ro$=

vie4s-artro$ies vie4s-artro$iesatosign vie4s-artro$ieset'a

is'ellaneos

-=organiations


vie4ro,'ts

ost 'lass

e,it'lasses

*i.e'='le Environ-ent

vie4li.e'='leenviron-ents e,itli.e'='leenviron-ents


'69

www%red#at%com

*i.e'='le Environ-ent

ro-oteorre-ove'ontentvie 4stoenviron-ents

name Y "

Content ;ie4s

vie4'ontentvie4s 'reate'ontentvie4s e,it'ontentvie4s lish'ontentvie4s ro-oteorre-ove'ontentvie 4s

name Y ccvZ


Role 4reation >sing Hammer 42/ (he .ollo4ing ha--er 'o--an,s 'reate a ser an, role an, a,, the 'orreson,ing er-issions to the role: ha--er ser 'reate .irstna-e ?ane X lastna-e Ga login ?aneGa X -ail ?aneGae$a-le/'o- X ass4or, Hre,hatH X athsor'ei,H1H X

www%red#at%com

'6=


organiations \%R] ha--er ser 'reate .irstna-e to- X lastna-e Ga login to-Ga X -ail to-Gae$a-le/'o- X ass4or, Hre,hatH X athsor'ei,H1H X organiations \%R]  'reate the Ga gro an, assign oth sers to it ha--er sergro 'reate na-e Gateaha--er sergro a,,ser na-e Gatea- ser ?aneGa ha--er sergro a,,ser na-e Gatea- ser to-Ga  'reate the Ga role an, assign the Ga gro to it ha--er role 'reate na-e Gaser ha--er sergro a,,role na-e Gatea- role Gaser

 vie4environ-ents'reateenviron-entse,itenviron-ents  ,estro=environ-entsi-ortenviron-ents ha--er .ilter 'reate er-issioni,s !567 role Gaser  vie4tas)svie4statisti'sa''ess,ashoar, ha--er .ilter 'reate er-issioni,s 1"12!" role Gaser  vie4environ-ents'reateenviron-entse,itenviron-ents  ,estro=environ-entsi-ortenviron-ents ha--er .ilter 'reate er-issioni,s !567 role Gaser  e,it'lasses ha--er .ilter 'reate er-issioni,s 66 role Gaser  vie4hostgros e,ithostgros ha--er .ilter 'reate er-issioni,s 7072 role Gaser  vie4hosts 'reatehosts e,ithosts ,estro=hosts il,hosts o4erhosts 'onsolehosts i-ioot etrnhosts ha--er .ilter 'reate er-issioni,s 77576777"79"0"2 role Gaser  vie4lo'ations ha--er .ilter 'reate er-issioni,s "7 role Gaser  vie4organiations ha--er .ilter 'reate er-issioni,s 105 role Gaser  vie4et'lasses ha--er .ilter 'reate er-issioni,s 115 role Gaser  vie4s-artro$ies vie4s-artro$iesatosign vie4s-artro$ieset'a ha--er .ilter 'reate er-issioni,s 1!21!61!9 role Gaser  -=organiations ha--er .ilter 'reate er-issioni,s 22! role Gaser  vie4ro,'ts ha--er .ilter 'reate er-issioni,s 209 role Gaser  e,it'lasses ha--er .ilter 'reate er-issioni,s 66 role Gaser  vie4li.e'='leenviron-entse,itli.e'='leenviron-ents ha--er .ilter 'reate er-issioni,s 20206 role Gaser


'6&

www%red#at%com

 #*(ERED: vie4'ontentvie4s'reate'ontentvie4se,it'ontentvie4s  lish'ontentvie4sro-oteorre-ove'ontentvie4s ha--er .ilter 'reate er-issioni,s 19019119219195 sear'h H name Y ccvZ H role Gaser  #*(ERED: ro-oteorre-ove'ontentvie4stoenviron-ents ha--er .ilter 'reate er-issioni,s 20" sear'h H name Y " H role Gaser

www%red#at%com

'90


Step 9: Manage the Content Lifecycle Continuously (his se'tion .o'ses on li.e'='le -anage-ent over ti-e/ (his se'tion ass-es that:  All re'entl= 'reate, 'ontent an, 'o-osite 'ontent vie4s are in la'e/  (he hosts asso'iate, to these 'o-osite 'ontent vie4s are  an, rnning/  %r nightl= 'ontents=n'hroniation lan ensres that Re, at an, thir,art= so.t4are reositories are ,ate, 'ontinosl=/

Red Hat Errata 'er'ie% So.t4are 'hanges to -ost Re, at ro,'ts are ,elivere, via in,ivi,al ,ates )no4n as errata a,visories @throgh the Re, at Csto-er Portal or other athorie, ortalsB/ Errata a,visories 'an e release, in,ivi,all= on an asnee,e, asis or aggregate, as a -inor release/ Re, at has three ,i..erent ,ate t=es:  Re, at Securit- A,visor= @RSAB  Re, at Bugfi? A,visor= @R&AB  Re, at En#ancement A,visor= @REAB n a,,ition se'rit= errata are 'lassi.ie, into  ,i..erent i-a't levels .ollo4ing the Co--on ;lnerailit= S'oring S=ste- @C;SSB s'oring -o,el:    

Criti'al -a't -ortant -a't o,erate -a't *o4 -a't

(he .ollo4ing lin)s rovi,e .rther ,etails aot these toi's:  sse Severit= Classi.i'ation: htts: a''ess/re,hat /'o-se'rit= ,ates'lassi.i'ation  Re, at Se'rit= Data etri's: htts: 444/re,hat /'o-se'rit= ,ata-etri's   Re, at C;E  Errata Dataase: htts: a''ess /re,hat /'o- se'rit='ve  Re, at Errata are art o. the 'ontent set 4ithin the Re, at reositories si-ilar to RP a')ages )i')start trees an, installation i-ages/ (he= are s=n'e, 4ith Satellite 6 along 4ith its asso'iate, a')ages ,ring reositor= s=n'/ n or soltion gi,e the= are s=n'e, ever= night at ! a/-/ sing the s=n' lan ,e.ine, in Step 5, Define our Definitive .edia 2i*rar4ontent%/


'91

www%red#at%com

Content Change Re&orting . =o 4ant to see ho4 -an= ne4 a')ages have een s=n'e, ,ring the ,ail=  night s=n' =o 'an 'he') = sing the the s=n'hroniation stats overvie4: Content ` S=n' Stats/ (he .ollo4ing s'reenshot rovi,es an e$a-le o. 4hat haens 4hen 'ontent 'hanges/ n this arti'lar s'enario onl= the Satellite 6 Casle &eta reositor= has 'hange, an, the Re, at So.t4are Colle'tions .or RE* have re-aine, n'hange,/ @&e'ase 4e 4rote the ,o'-ent e.ore Satellite 6/1 A the e$a-le ses a eta reositor=/B

Errata oti!ication Emai"s S=n'hroniation noti.i'ation e-ails 'an e 'on.igre, .or ea'h ser/ (o 'on.igre e-ails:    

As a Satellite A,-inistrator navigate to A,-inister c Users Cli') the serna-e o. the ser =o 4ant to e,it/ %n the ail Pre.eren'es ta sele't ail enale, to enale ,ates/ Sele't the t=e o. noti.i'ations the ser 4ill re'eive/

Aote,  (o re'eive noti.i'ations aot 'hange, 'ontent sets a.ter s=n'hroniing a reositor= sele't the bSatellite s=n' errataO noti.i'ation ite-/  . =o 'reate a ne4 ser =o 4ill not e ale to see the 'he')o$es .or these three

www%red#at%com

'9'


,i..erent noti.i'ations ntil =oOve s-itte, the ne4 ser an, resele'te, hi-/

Sate""ite  Content $ashboard and Errata 'er'ie% Satellite 6 Content Dashoar, rovi,es an overvie4 that in'l,es oth s=n' stats an, errata overvie4 4i,gets/ n a,,ition n,er Content ` Errata =o 'an see a ,etaile, list o. errata an, the a..e'te, 'ontent hosts/

Sate""ite  Errata Management 'er'ie% Re, at Satellite rovi,es tools to inse't an, .ilter errata allo4ing .or re'ise ,ate -anage-ent/ (his 4a= =o 'an sele't relevant ,ates an, roagate the- throgh 'ontent vie4s to sele'te, 'ontent hosts/ n Re, at Satellite t4o )e=4or,s ,es'rie errata 4ith regar, to their relationshi to the availale 'ontent hosts:  Ali'ale: errata alies to one or -ore 'ontent hosts 4hi'h -eans it ,ates a')ages resent on the 'ontent host/ Ali'ale errata are not =et a''essile = the 'ontent host/  nstallale: errata alies to one or -ore 'ontent hosts an, it has een -a,e availale to the 'ontent host/ nstallale errata are resent in the 'ontent hostOs li.e '='le environ-ent an, 'ontent vie4 t are not =et installe,/ (his 4a= errata 'an e installe, = sers that have er-issions to -anage 'ontent hosts t are not entitle, .or errata -anage-ent at higher levels/ (he .ollo4ing se'tion e$lains ,i..erent s'enarios an, ho4 to .l.ill these sing Re, at Satellite 6/

Aote, Crrentl= Errata are onl= availale .or Re, at Pro,'ts @an, the EPE* reositor=B/ (hir,art= so.t4are an, 'sto- so.t4are sall= ,o not shi errata an, 'sto- errata are not in Satellite 6 =et/ (his li-itation ri-aril= a..e'ts >se 4ase 8C /ncremental >pdates ) "ppl- Selected Errata to Hosts in this Ste/ All other se 'ases 4or) .or all so.t4are sor'es/

-se Case +) -&dating the Core 7ui"d Dring ste 5 4e ,e.ine, or ,i..erent 'ore il,s @share, 'ontent sets se, = all hostsB/ Pri-aril= the 'ore il, 'ontains a 'ore set o. a')ages that are art o. Re, at Enterrise *in$ as the oerating s=ste-/ Errata affecting one or more core *uilds automaticall-


'95

www%red#at%com

affect a #uge num*er of s-stems% (here.ore these ,ates are -ore 'riti'al than those that a..e't onl= a s-all sset o. s=ste-s/ n this s'enario 4e ass-e that all Pet 'on.igrations re-ain n'hange,/ %nl= the so.t4are a')ages insi,e the 'ontent vie4 for t#e core *uild are ,ate,/ e 4ill 'over 'hanges to Pet 'on.igrations in another s'enario/ #or -ore re'o--en,ations aot Petrelate, 'hanges see M >se 4ase (C "dding a Aew Puppet .odule to an E?isting 4ontent $iew in this Ste/ (he 'ore il, 'ontent vie4 has the .ollo4ing en,toen, ,ate '='le:    

U,ate the 'oreil, 'ontent vie4/ U,ate the a..e'te, 'o-osite 'ontent vie4s/ Pro-ote the 'o-osite 'ontent vie4s throgh the aroriate li.e'='le stages/ U,ate the host@sB that elong to the host gros/

1. Update the Core Build Content View Satellite ,ates its so.t4are reositories ever= night = sing the s=n' lanes 'reate, ,ring Ste 1/ (o al= all 'ontent availale at a 'ertain ti-e lish a ne4 'ontent vie4 versionV all 'ontent that has een s=n'hronie, into Satellite sin'e the last ti-e this 'ontent vie4 4as lishe, is no4 ato-ati'all= a,,e, to its 'ontent/ hen 4e sa= Mato-ati'all= 4e -eans that the total n-er o. a')ages an, errata in the ,ate, 'ontent vie4 4ill e higher than in the ol, version if the content has changed. @Re, at reositories gro4 'ontinosl= e'ase 4e ,o not re-ove a')ages t onl= a,, ne4er onesB/ (o ,ate the Core &il, Content ;ie4:    

o to Content ` Content ;ie4 Sele't the 'ore il, 'ontent vie4 b'vosrhel7ServerO Cli') the Plish ne4 version tton/ Enter an aroriate ,es'rition @.or instan'e bn.iltere, 'ontent ,ate a= 26th 2015O an, 'li') S-it/ (he ne4 'ontent vie4 version is lishe,/ Io shol, see a higher n-er o. a')ages/ A.ter 4eOve s''ess.ll= ,ate, the 'ore il, 'ontent vie4 .or RE* 7 4e 'an ro-ote throgh the ,e,i'ate, li.e'='le environ-ent ath se, = ( %erations @DE;`A`PR%DB an, e$e'te the asso'iate, tas)s asso'iate, to this environ-ent or li.e'='le stage @ri-aril= testingB/ (he .ollo4ing ha--er 'o--an,s lish an, ro-ote the ne4est version to stage Dev:

www%red#at%com

'98


ha--er 'ontentvie4 lish na-e 3'vosrhel7Server3 organiation ACE C;D@ha--er 'sv 'ontentvie4 list na-e 3'vosrhel7Server3 organiation \%R]  gre vi HContent ;ie4 DH  a4) #HH H\rint 1]H B ;Djha--er 'ontentvie4 version list 'ontentvie4i, C;D  a4) #HH H\rint 1]H  sort n  ta'  hea, n 1j ha--er 'ontentvie4 version ro-ote 'ontentvie4i, C;D organiation ACE as=n' toli.e'='leenviron-ent DE; i, ;D

Aote, Until =o have ,ate, the 'o-osite 'ontent vie4s that 'ontain the RE* 7 'ore il, 'ontent to the 'rrent version all oerations e$e'te, reviosl= have no i-a't on the ali'ations rnning on to o. the 'ore il,/

2. Update the Affected Composite Content Views (o -a)e the 'ontent 'hange relevant to ali'ations an, hosts sing the RE* 7 'ore il, 4e nee, to ,ate the 'orreson,ing 'o-osite 'ontent vie4s no4/ #irst 4e nee, to .igre ot 4hi'h 'o-osite 'ontent vie4 is sing or re'entl= ,ate, 'oreil, 'ontent vie4/ Using the e U =o nee, to investigate ea'h 'o-osite 'ontent vie4 to i,enti.= i. it is sing the 'ore il, 'ontent vie4 4eOre loo)ing .or:  Cli') on Content ` Content ;ie4s/  Sele't a 'o-osite 'ontent vie4/  Cli') on the Content ;ie4s ta to see the inherent 'ontent vie4s insi,e/ @Ea'h Content ;ie4 that ses or RE*7 Core &il, nee,s to e ,ate,/B  Cli') the E,it tton ne$t to the version o. the 'oreil, 'ontent vie4 an, sele't or ne4 version/  Cli') on Plish Ne4 ;ersion/ A.ter =o have s''ess.ll= lishe, the 'o-osite 'ontent vie4 =o 'an ro-ote it to the ne$t li.e'='le stage/

Aote, n .tre releases o. Re, at Satellite =o -ight have the otion to ato-ati'all= se the latest version o. a 'ontent vie4 insi,e a 'o-osite 'ontent vie4/ (he 'orreson,ing R#E .or this .eatre is here: htts: gilla/re,hat /'o-sho4 g/'gi fi, 1177766


'9(

www%red#at%com

3. Promote the Composite Content view Through the Corresponding Lifecycle Stages A.ter s''ess.ll= lishing the 'o-osite 'ontent vie4 =o -st ro-ote it throgh the 'orreson,ing li.e'='le environ-ent ath/ As -entione, in revios Stes =o ,o not nee, to ro-ote the the inherent 'ontent vie4s e'ase the entire 'ontent o. the 'o-osite 'ontent vie4 is ro-ote,/ (his is also tre in 'on?n'tion 4ith 'asles in 'ases 4here 'asles are asso'iate, to arti'lar li.e'='le environ-ents @.or e$a-le in or 'ase the stages beDE;O an, beAO are asso'iate, to the 'asle in the &oston lo'ationB/

4. Update All Affected Hosts That Belong to the Corresponding Host Groups A.ter =o have s''ess.ll= ro-ote, the 'o-osite 'ontent vie4 to .rther li.e'='le environ-ents the 'ontent ato-ati'all= e'o-es availale to all host @grosB asso'iate, to this @'o-ositeB 'ontent vie4 an, li.e'='le environ-ent/ . =o 'li') on osts ` Content ost =o 'an see a list o. all Satellite 6 -anage, hosts in'l,ing the installale errata availale to these hosts/ n the e$a-le elo4 =o 'an see several errata in or ne4 version o. the 'ontent vie4/ (hese errata are availale to the thir, host 'oreil,testsrv7/,-/e$a-le/'o-/

A.ter sele'ting this host an, 'li')ing on the Errata ta 4e 'an also see a list o. these installale errata/ Note that 4e le.t the MSho4 .ro- sele'tion as MCrrent Environ-ent/ As a reslt 4e see the 2 errata in total that are installale to this host/

www%red#at%com

'96


(o ,e-onstrate the ,i..eren'e et4een installale an, ali'ale errata 4e no4 'hange the MSho4 #ro- list to M*irar= S=n'e, Content/ 3#e num*er of availa*le errata increases from '8 to 51% (his 'hange -eans that there are 7 a,,itional errata in the *irar= that are not art o. the 'ontent vie4 version in this environ-ent @Pro,B/


'99

www%red#at%com

&e'ase 4e lant to ,es'rie the ali'ale errata in MUse Case B n're-ental U,ates  Al= Sele'te, Errata to osts letOs 'hange the Sho4 .ro- .iel, a') to MCrrent Environ-ent/ No4 4e 'an sele't arti'lar errata or all 2 errata at the sa-e ti-e/ A.ter =o sele't all an, 'li') on MAl= Sele'te, Satellite 6 as)s i. =o are sre/

Cli') Al=/ Io 4ill see a rogress ar an, a list o. the errata that are 'rrentl= alie, to the sele'te, host/ . the oeration has een s''ess.ll= 'o-lete, go a') to the osts ` Content osts overvie4 age/ No4 all ! test s=ste-s have no re-aining installale errata/ (he s=ste-s ,ate, to their 'rrent 'ontent vie4 version in this li.e'='le environ-ent/

-se Case 9) e% 6ersion o! the A&&"ication C6 %ith an -nchanged Core 7ui"d Use Case 2 is si-ilar to the 'ore il, s'enario e$laine, aove/ (he sa-e stes al= e$'et .or those involving the ali'ation 'ontent vie4:  U,ate the ali'ationse'i.i' 'ontent vie4  U,ate the a..e'te, 'o-osite 'ontent vie4s www%red#at%com

'9=


 Pro-ote the 'o-osite 'ontent vie4 throgh the 'orreson,ing li.e'='le stages  U,ate =or host elonging to the host gros n or ACE s'enario 4e ass-e that the ,e,i'ate, o4ners o. the ali'ation sta') la=er er.or- these oerations/ See Step = .or .rther ,etails/

-se Case :) Core 7ui"d and A&&"ication C6s -&dated Simu"taneous"y n this s'enario the release nit is the .ll ali'ation sta')/ All so.t4are 'o-onents are ,ate, at the sa-e ti-e/ (he ro'e,re no4 in'l,es ,ating all inherent 'ontent vie4s/ (he or,er in 4hi'h =o ,ate the 'ore il, an, the ali'ationse'i.i' 'ontent vie4 ,oesnOt -atter/ (he ro'e,re has these stes:     

U,ate the 'oreil, 'ontent vie4 U,ate the ali'ationse'i.i' 'ontent vie4 U,ate the a..e'te, 'o-osite 'ontent vie4s Pro-ote the 'o-osite 'ontent vie4 throgh the 'orreson,ing li.e'='le stages U,ate the host elonging to the host gros

-se Case ;) Incrementa" -&dates 2 A&&"y Se"ected Errata to Hosts (he three revios s'enarios start 4ith the 'ontent an, then -ove to the target hosts/ Satellite 6/1 rovi,es an a,,itional 4a= to ,ate servers = starting .ro- a host an, then -oving to the 'ontent/ (he overvie4 age n,er Content ` Errata lists all errata availale to 'ertain hosts in =or environ-ent/ As e$laine, earlier this age sho4s oth ali'ale an, installale errata/ n these revios s'enarios 4e ,ate, the 'ontent vie4s an, -a,e the 'ontent availale to the a..e'te, hosts/ e sele'te, bnstallaleO an, nsele'te, bAli'aleO to sho4 onl= the ,ates -anage, = or re'entl= ,ate, 'ontent vie4s/ n this se 'ase 4e ,i, not ,ate the 'ontent vie4s t instea, alie, @'riti'alB errata to the a..e'te, hosts/ Satellite 6 ato-ati'all= 'reates lishes an, ro-otes a ne4 'ontent vie4 minor version to the li.e'='le environ-ents 4ith 4hi'h the host @groB is asso'iate,/ nstea, o. sing the Errata overvie4 n,er Content ` Errata start 4ith osts ` Content osts/ n the thir, 'ol-n Mnstallale Errata =o 'an see the errata that are availale t have not =et een installe, on this arti'lar 'ontent host/ Io 'an see the t=e o. errata @RSA R&A REAB an, the total n-er o. availale errata o. ea'h t=e/


'9&

www%red#at%com

&e'ase Use Case 1B alrea,= ,es'ries ho4 to al= installale errata 4eOre going to ass-e that =o no longer have installale errata an, =or s'reen loo)s li)e this:

. 4e no4 'hange the Sho4 #ro- list to M*irar= S=n'e, Content 4e 'an see a single se'rit= errata in the *irar=/ &t this errata is not =et in the 'ontent vie4 version in this li.e'='le environ-ent/ n 'ontrast to the ro'e,re in Use Case 1B 4e 'annot sele't an, al= this errata e'ase it is not in the 'ontent vie4 version/

(he lin) in this in.or-ation oints to the Content ` Errata overvie4 age/ . 4e 'li') the lin) www%red#at%com

'=0


an, se the .ilter to ,isla= ?st this arti'lar Re, at Se'rit= A,visor= 4e 'an no4 sele't this errata/

A.ter 'li')ing Al= Errata 4e 'an see a list o. the 'ontent hosts a..e'te, = this errata/ n this s'enario 7 hosts are a..e'te,/ e sele't the -ost 'riti'al one or ro,'tion Satellite 6 'asle server an, then 'li') Ne$t an, Con.ir-/ A.ter 4e have s''ess.ll= 'o-lete, the in're-ental ,ate the ,etails s'reen sho4s 4hi'h 'ontent vie4s have een a..e'te,:

(his oeration has a'tall= er.or-e, the .ollo4ing tas)s:  Create, a ne4 -inor version 1/1 o. the 'oreil, 'ontent vie4 'vosrhel7Server


'=1

www%red#at%com

4here the oenssl a')ages are art o. the reositories insi,e this 'ontent vie4/  Create, a ne4 -inor version 2/1 o. the 'o-osite 'ontent vie4 ''vin.ra'asle 4hi'h is the 'o-osite 'ontent vie4 asso'iate, 4ith this host 4ithin this host gro  Pro-ote, the 'ontent vie4 to the PR%D li.e'='le environ-ent 4here the sele'te, host is lo'ate, (he ,i..eren'e et4een the 'o-osite 'ontent vie4 version '%0 an, the ne4er version '%1 are the .ive a')ages asso'iate, 4ith this errata as liste, in the revios s'reenshot/ hile the .or-er C; version 2/0 'ontains onl= 1091 a')ages the ne4 -inor version 2/1 'ontains all these ls the 5 ne4 a')ages @1096B/

@arning, hen =o go to a host an, ,ate it 4ith errata e sre to sele't the #ost and content view 'he')o$/ %ther4ise even i. =o sele't arti'lar errata an, se'i.i' hosts to ,ate ea'h ,ate 'reates a ne4 -inor version o. the asso'iate, 'ontent vie4 or 'o-osite 'ontent vie4/ (he in're-ental ,ate -anage-ent 'reates lishes an, ro-otes a ne4 -inor version o. the a..e'te, 'ontent or 'o-osite 'ontent vie4/ "ll #ost groups and #osts associated to t#is content view and lifec-cle environment now #ave access to t#is new content at t#e same time% 3#e content is not limited to t#e #osts originall- selected for t#is operation/

-se Case <) Adding a e% /u&&et Modu"e to an E0isting www%red#at%com

'='


Content 6ie% (he iggest ,i..eren'e et4een the so.t4are a')age 'hanges in the revios s'enarios an, the Pet 'on.igration 'hange in this se 'ase is that eac# Puppet c#ange automaticallimplies a software c#ange at t#e same time if t#e software repositories #ave c#anged / See the 4ontent $iew Recommendations 'hater .or -ore ,etails/

Our Solution Guide and Dedicated Content Views n this soltion gi,e we are not using dedicated content views for Puppet configuration/ %r set .ollo4s this ro'ess:  Io -a)e a 'hange to the Pet 'on.igration  (hat 'hange is lishe, ato-ati'all= to the 'ontent vie4/ All so.t4are a')ages s=n'e, to Sat6 sin'e the last ti-e the 'ontent vie4 4as lishe, are no4 art o. that 'ontent vie4/ n or oinion the a,vantages o. or set ot4eigh the ,isa,vantages/ Stalle, so.t4are 'hanges 4ol, onl= ostone the otential isses not solve the-/

Adding a New Version or a New Class (he .ollo4ing ro'e,res are the sa-e .or these si-ilar se 'ases:  A,,ing a new version o. an e$isting Pet -o,le  A,,ing a new class insi,e an e$isting Pet -o,le Io 4ol, ta)e these asi' stes to er.or- one o. these se 'ases relate, to Pet -o,le 'hanges: @(hese stes ass-e the ne4 @version o. aB Pet -o,le is alrea,= she, or s=n'hronie, into the 'sto- Puppet reositor=/ See Step 5 .or .rther in.or-ation/B / A,, the ne4 Pet -o,le or 'hange the version @i. not set to )atest B o. an e$isting -o,le insi,e the 'ontent vie4 an, lish the ne4 version o. the 'ontent vie4 @'ore il, or ali'ation se'i.i'B/ @a)e these 'hanges on the Pet o,les ta/B 5/ U,ate the a..e'te, 'o-osite 'ontent vie4s/ 6/ Pro-ote the 'o-osite 'ontent vie4 throgh the 'orreson,ing li.e'='le stages/ 7/ Optional A,, the ne4 Pet 'lasses to a 'on.ig gro/ "/ A,, the ne4 Pet 'lasses to all host gros 4ith 4hi'h the a,ate, C; is asso'iate,/ (hese a,,itional stes are reGire, onl= i. =o a,, ne4 Pet -o,les or ne4 'lasses to e$isting -o,les/


'=5

www%red#at%com

(he .ollo4ing se'tions rovi,e -ore ,etails aot ea'h o. these stes/

1% "dd a Aew Puppet .odule or "dapt an E?isting $ersion &e.ore =o 'an a,, a ne4 -o,le or sele't a ne4er version o. it the -o,le -st e she, to or s=n'e, 4ith Re, at Satellite/ See Step 5 .or .rther ,etails/

/f it is an e?isting module and t#e Puppet module version inside t#e content view #as *een set to latest =o ,o not nee, to a,at the version o. this -o,le on the Pet o,le ta o. the 'ontent vie4/ . it is a new module @either in a arti'lar 'ontent vie4 or in generalB =o nee, to a,, this Pet -o,le initiall= to this 'ontent vie4:  Cli') the Pet o,les ta insi,e the 'ontent vie4/  Cli') the A,, Ne4 o,le tton/ A @otentiall= longB list o. all Pet -o,les availale in Satellite ,isla=s/  Use the .ilter .iel, to -a)e it easier to .in, the -o,le/  Cli') the Sele't ;ersion tton o. the -o,le =o 4ant to a,,/ A ne4 age that 'ontains all availale versions o. the -o,le ,isla=s  Io 'an either: d Sele't a arti'lar version or d Set it to Use *atest/

Aote, . =o set it to >se 2atest a ne4er version o. the Pet -o,le ato-ati'all= e'o-es art o. the 'ontent vie4 i. the 'ontent is lishe,/ Ea'h ti-e a ne4 'ontent vie4 version is lishe, an, if t#ere is also a newer version of t#e Puppet module availale the ne4er version o. the -o,le ato-ati'all= e'o-es art o. the ne4 'ontent vie4 version/ . the ne4er version o. the -o,le 'ontains ne4 Pet 'lasses =o ,o not nee, to ,o an=thing else/ (he content view manages t#e entire Puppet module including all its in#erent classes / o4ever i. =o 'reate a ne4 'lass =o -st ta)e an a,,itional ste in the host gro an,  or -a)e a,atations to the 'on.ig gro as e$laine, in the ne$t se'tion/

'% >pdate t#e "ffected 4omposite 4ontent $iews (his ste is si-ilar to ,ating 'o-osite 'ontent vie4s in the revios se 'ases/ Io 'an ta)e the sa-e asi' stes as in M1/ A,, a Ne4 Pet o,le or A,at an E$isting ;ersion/

5% Promote t#e 4omposite 4ontent $iew 3#roug# t#e 4orresponding 2ifec-cle Stages n earlier se 'ases in this se'tion 4e e$lain ho4 to ro-ote a 'o-osite 'ontent vie4

www%red#at%com

'=8


throgh the 'orreson,ing li.e'='le stages/ Io 'an ta)e the sa-e asi' stes here/ As a art o. 'ontent vie4 'reation an, ro-otion Re, at Satellite 6 ato-ati'all= 'reates a ne4 Pet environ-ent .or ea'h 'o-ination o. a 'ontent vie4 an, a li.e'='le environ-ent/ (his Pet environ-ent shol, no4 'ontain or -o,le/ Io 'an vie4 this ne4 Pet environ-ent on the Con.igre c Environ-ents age/

3ip, . =o have s''ess.ll= i-orte, a Pet -o,le a,,e, it to the 'ontent vie4 an, ro-ote, the 'ontent vie4 throgh li.e'='le stages t 'anOt see the -o,le insi,e the 'orreson,ing Pet environ-ents =o -ight have a t=o insi,e =or Pet -o,le/ . =o 'an see the -o,le insi,e the sa-e Pet environ-ent on the .iles=ste- on Satellite 6 server in /etc/puppet/enironments t not sing the eU on Con.igre ` Environ-ents a t=o insi,e the Pet 'ol, e the 'ase/ n or 'ase a -issing 'o--a at the en, o. a line le, to this s'enario/

4. Optional : Add the New Puppet Classes to a Config Group n Step 9 4e 'reate, so-e 'on.ig gros/ (hogh 'on.ig gros are not -an,ator= the= -a)e it easier to -anage an in'reasing n-er o. Pet -o,les an, their inherent 'lasses/ nstea, o. sele'ting in,ivi,al Pet 'lasses insi,e a host gro or 4hile rovisioning ne4 hosts =o 'an asse-le ,i..erent 'lasses into a 'on.ig gro/ (his ro'ess -a)es it easier to assign host gros an, hosts/

Aotes,  . =o are creating a new Puppet module or a newer version of a module that 'ontains ne4 Pet 'lasses =o nee, to a,at the asso'iate, 'on.ig gros/  . =o make c#anges to an e?isting Pet 'lass  =o ,o not have to a,at 'on.ig gro/

5. Add the New Puppet Classes to All Host Groups with Which the Adapted CV is Associated (he sa-e asi' rles al= .or host gros as .or 'on.ig gros:  . =o are creating a new Puppet module or a newer version of a module that 'ontains ne4 Pet 'lasses =o nee, to a,at the asso'iate, host gros/  . =o make c#anges to an e?isting Pet 'lass =o ,o not have to a,at the host gro/ (o a,at a host groOs asso'iation:


'=(

www%red#at%com

/ o to Con.igre ` Pet Classes/ (o the right o. ea'h Pet 'lass =o see the 'rrentl= asso'iate, host gros/ . 4e ass-e that 4e are tal)ing aot a ne4 'lass @in an e$isting or as art o. a ne4 Pet -o,leB the list o. host gros shol, e e-t= at this ti-e/ 5/ Cli') on the Pet 'lass na-e/ 6/ %n the ne4 s'reen sele't the host gros to 4hi'h the Pet 'lass shol, e assigne,// 7/ . =o are sing S-art Class Para-eter or S-art ;ariales in the -o,le sele't the 'orreson,ing tas an, a,at a''or,ingl=/ "/ Cli') S-it/ (he Pet 'lass is no4 asso'iate, 4ith the 'orreson,ing host gros/

@arning, %n'e =o 'li') S-it no .rther a'tion is reGire, .or the target s=ste-s/ All 'hanges are i--e,iatel= availale to the 'orreson,ing 'lient s=ste-s/ &= ,e.alt all the 'lient s=ste-s shol, e ,ate, 4ith these 'hanges in the ne$t !0 -intes @this is the ,e.alt interval o. a Pet rn ,e.ine, insi,e /etc/puppet/puppet.conf other4iseB/ . =o 4ant to al= the 'hanges i--e,iatel= 4ithot 4aiting on the ne$t rn =o 'an log into the host an, en.or'e an i--e,iate rn = sing the .ollo4ing 'o--an,: et agent no,ae-onie oneti-e veroseV

Io 'an also -onitor all 'hanges on the Satellite 6 Dashoar,/

www%red#at%com

'=6


Step 10: Automate and extend your setup (his ste shol, rovi,e so-e i,eas aot otential e$tensions o. the set 4e 'o-lete, in revios stes/ So-e o. the- go e=on, the ri-ar= rose o. Satellite 6 an, the targete, se 'ases/ o4ever Satellite 6 an, ese'iall= its C* an, AP 'aailities allo4 a lot o. otential enhan'e-ents .rther ato-ation an, integration o. Satellite 6 as art o. a 4i,er or'hestration o. the tool 'hain/ e have not 'o-lete, an, ,o'-ente, all ossile enhan'e-ents/ &t at least so-e o. these e$tensions an, .rther ato-ations -ight e'o-e arts o. 'o-ing ,o'-ents/ (he s'enarios -entione, elo4 are otsi,e o. the the s'oe o. the oste, Servi'e *evel Agree-ents an, sort ro'e,res @htts: a''ess /re,hat /'o-sort o..eringsro,'tionB/ (he= rovi,e an overvie4 aot otential enhan'e-ents as artiall= seen in varios 'sto-er ro?e'ts an, environ-ents/

Ta"k to us@ . =o have other se 'ases =o 4ant s to 'over or have tistri')s that =o 4ol, li)e to share 4ith the Satellite 6 'o--nit= 'onta't s at re.ar'h.ee,a')re,hat/'o- / eO, love to hear .ro- =o/ . 4e se =or 4or) 4e 4ill a,, =o to or 'ontritor list/

Im&orting e0isting hosts (=i'all= an organiation -a= have hosts that have not een -anage, = Satellite 6 in the ast/ (hese hosts 'annot e -anage, = Re, at Satellite server nless the= are i-orte, .irst/ Usall= these hosts have een -anage, over Re, at Net4or) @RNB in the ast 4hi'h is the ,e.alt registration oint .or all Re, at Enterrise *in$ installations/ #or Re, at Satellite 5 'sto-ers 4ant to -igrate their hosts .ro- Satellite 5 to Satellite 6 Re, at rovi,es a ,e,i'ate, transition ,o'-entation: htts: a''ess /re,hat /'o- )no4le,gearti'les 11"76! (o register an e$isting host to =or Re, at Satellite 6 server ta)e the .ollo4ing stes:    

Ensre that the registration rereGisites have een .l.ille,/ Ensre a roer ti-e s=n'hroniation @sage o. nt, or 'hron= re'o--en,e,B/ nstall the Re, at Satellite 6 CA 'erti.i'ate/ Register the host sing ss'rition-anager/ Designate the 'orreson,ing organiation an, a'tivation )e= ara-eters/  nstall the )atelloagent a')age/  nstall an, 'on.igre Pet/ refarc#)feed*ack+red#at%com

'=9

www%red#at%com

(he rereGisites an, all .ollo4ing stes are ,o'-ente, in ,etail insi,e the Re, at Satellite 6 User i,e: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l Useri,e in,e $/ht-l se't Re,at SatelliteUseri,eCon.igring osts .orRegistration

@arning, tOs i-ortant to e a4are o. the host gro an, the 'ontent vie4 asso'iate, 4ith the a'tivation )e= se, ,ring registration/ (his host an, ese'iall= the Puppet classes asso'iate, 4ith this host gro @an, all 'on.igrations ,e.ine, insi,eB automaticall- applies to t#is #ost ,ring the ne$t Pet rn/ (his asso'iation et4een the Pet 'lasses an, the host gros -ight lea, to unforeseea*le and critical c#anges to the host 'on.igration/ n .a't the s-stem and its application could *ecome unusa*le / &e.ore registering a s=ste- =o nee, to ensre that all 'on.igrations ,e.ine, ri-aril= in the eGivalent host gro ,e.initions 4onOt over4rite an, ,a-age an= e$isting 'on.igrations o. this host/ Althogh this oint is not as 'riti'al e 'are.l that the content view asso'iate, to the host gro 4ith 4hi'h the a'tivation )e= is asso'iate, provides all reMuired software repositories w#ic# are currentl- used *- t#ese #osts / (he sa-e thin)ing alies to the inherent update level/ issing so.t4are reositories or ol,er ,ate levels than the alrea,= installe, ones -ight revent =or s=ste-s .ro- eing roerl= ,ate, ,ring so.t4are -aintenan'e/

Im&ro'e your bare meta" &ro'isioning using the $isco'ery /"ugin (he #ore-an Dis'over= lgin in Re, at Satellite Server a,,s etalasaServi'e @aaSB .eatres/ &are-etal hosts on Satellite Server-anage, net4or)s 'an e oote, over the net4or) throgh P8E into strie,,o4n Re, at Enterrise *in$ s=ste-s rnning .ro-e-or= to 'olle't an, sen, har,4are .a'ts to the Satellite Server/ A.ter the= have oote, these s=ste-s aear as ,is'overe, hosts on the Satellite Server/ A,-inistrators 'an se these 'olle'te, har,4are .a'ts to rovision s=ste-s re-oving the nee, to -anall= 'olle't AC a,,resses an, other har,4are in.or-ation an, re,'ing the ti-e reGire, to rovision hosts/ A.ter the rovisioning 'on.igration is 'o-lete the #ore-an ,is'over= lgin sen,s a reoot 'o--an, to the ,is'overe, host an, the installation egins/ (he host then -oves .ro- the Dis'overe, osts list in the Satellite Server to the All osts list/ www%red#at%com

'==


#or -ore in.or-ation see: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/1 ht-l Useri,e in,e $/ht-l 'haRe,at SatelliteUseri,eUsingthe #ore-anDis'over=Plgin Satellite 6/1 e$ten,s this 'aailit= an, allo4s the a,-inistrator to ,e.ine rles that govern ho4 these ,is'overe, s=ste-s are rovisione,/ Provisioning 'an o''r ato-ati'all= an, 4ithot .rther intervention/ Detaile, ,o'-entation is availale here: htts: a''ess/re,hat /'o-'o--ent 92!2!!

Integration o! 7acku& Management and Systems Management Si-ilar to the -onitoring integration as ,es'rie, insi,e this soltion gi,e a se'on, t=i'al integration oint is a') -anage-ent/ . the arti'lar a')-anage-ent set reGires host or ali'ationse'i.i' 'on.igrationsthe= -ight e'o-e art o. the host or ali'ationse'i.i' 'ontent an, 'on.igration ,e.initions/ ore re'isel= the .ollo4ing otential integration oints are sorte, = Re, at Satellite 6: / ,elo=ing a')-anage-ent agents on arti'lar hosts 5/ 'on.igring the 'lientsi,e a') -anage-ent 'on.igration .iles so that the= 'orreson, to re,e.ine, 'on.igration te-lates .or in,ivi,al ali'ations 6/ ,elo=ing the 'lientsi,e 'on.igration to rn reglar a')s @'hronB 7/ ato-ati'all= a,,ing ne4 hosts to the serversi,e a') 'on.igration = sing .ore-an hoo)s "/ installing an, 'on.igring the a')-anage-ent server 9/ installing an, 'on.igring so.t4arease, s'aleot storage se, as a')en, storage .or a') @.or e$a-le Re, at lster StorageB 10/a')ing  the Satellite 6 'on.igration and ,ata So-e o. the ite-s -entione, aove are art o. 'o-ing ,o'-entation that is 'rrentl= in rogress/ Starting 4ith version 6/1 Re, at Satellite shis 4ith t4o ne4 s'rits katello-backup .or a')ing  an, katello-restore .or restoring a Satellite 6 server/ See the Satellite 6 User i,e .or ,etails on ho4 to a')  an, restore the Satellite 6 'on.igration .iles an, ,ata: htts: a''ess /re,hat /'o-,o'-entationen USRe, at Satellite6/0 ht-l Useri,e se't


'=&

www%red#at%com

Disaster Re'over= /ht-l

Ho% Sate""ite  Su&&orts .our Security Management /rocess Re, at rovi,es a hge n-er o. se'rit=relate, te'hnologies that hel 'sto-ers ensre that their s=ste-s 'an e rote'te, against varios t=es o. se'rit= ris)s e..i'ientl=/ Tst a .e4 o. these te'hnologies in'l,e: Se'rit= Enhan'e, *in$ .ire4alls s;irt a,it, SSSD ,- oenSCAP .ile s=ste- en'r=tions an, -an= -an= -ore/ n a,,ition Re, at has -an= se'rit=se'i.i' 'erti.i'ations o. varios Re, at ro,'ts an, other ven,ors also rovi,e a roa, e'os=ste- o. 'o-le-entar= se'rit=relate, ro,'ts/ Re, at rovi,es se'rit=relate, training an, ,o'-entation s'h as the M Re, at Enterrise *in$ Se'rit= i,e or the MServer ar,ening (raining Corse @R 1!B / Satellite sorts se'rit= -anage-ent in varios areas:  errata noti.i'ations an, reorting  e..i'ient ,ate an, errata -anage-ent  errata -anage-ent in,een,ent o. the 'rrent 'ontent availailit= set @ali'ale vs/ installaleB in'l,ing ato-ate, 'ontentset a,atations @'ontentvie4 -inor releasesB  oenSCAP integration .or veri.=ing the resen'e o. at'hes 'he')ing s=ste-se'rit= 'on.igration settings an, e$a-ining s=ste-s .or signs o. 'o-ro-ise  ,elo=-ent an, 'on.igration o. varios se'rit=relate, te'hnologies an, 'on.igrations  veri.i'ation o. ,elo=e, a')ages an, 'on.igrations sing iltin veri.i'ation 'aailities o. r- .or-at an, Pet  segregation o. ,t= an, .inegranlar a''ess 'ontrol .or all Satellite 6 entities

Ho% Sate""ite  Su&&orts .our Ser'ice 6a"idation ? Testing (A) /rocess Satellite 6 'an e se, in varios 4a=s to sort AE a'tivities as art o. the Servi'e ;ali,ation an, (esting ro'ess/ (he .ollo4ing s'enarios leverage the varios 'aailities rovi,e, = Re, at Satellite 6:  'reating 'oies o. e$isting ro,'tion s=ste-s to rero,'e errors an, test .i$es  'onsi,ering li.e'='lestagese'i.i' a,otion @.or e$a-le the a,,itional installation o. testing tools or a,ate, 'on.igrations .or test s=ste-s sing ara-etriation an, environ-entse'i.i' 'on.igrationsB  sing ato-ate, s=ste- rovisioning @reGire, .or the .ast sin o. test s=ste-s an,

www%red#at%com

'&0


environ-ents ese'iall= .or nonersistent test environ-entsB  -anaging roles an, a''ess ase, on R&AC .eatres to sort role 'on'ets an, aroval 4or).lo4s  ,e'oling release '='les throgh in,een,ent release -anage-ent an, li.e'='le environ-ents to sort s-aller an, .aster 'hanges  an, -an= -ore So-e 'sto-ers have i-le-ente, e..i'ient testing @ to Continosntegrationli)e environ-entsB ase, on Satellite 6 an, so-e enhan'e-ents that leverage its AP an, C*ato-ation 'aailities/

Ho% Sate""ite  Su&&orts .our Asset ? Con!iguration Management /rocess Satellite 6 a'ts as a 'entral s=ste- -anage-ent tool a'ross ,i..erent har,4are an, virtaliation lat.or-s an, in'l,es all so.t4are an, 'on.igration assets -anage, = =or Satellite/ t also has a''ess to an, rovi,es a lot o. in.or-ation aron, its -anage, entities/ (he .ollo4ing list rovi,es so-e e$a-les o. ho4 Satellite 6 'an e se, to sort this 'ore ro'ess o. ( Servi'e anage-ent:  overvie4 o. all assets -anage, = Satellite 6 in'l,ing are-etal an, virtal assets an, their general in.or-ation @.or e$a-le ven,or -ainoar, 'i ,evi'es -e-or= ' et'/B  ,etaile, overvie4 o. all so.t4are an, 'on.igration o?e'ts .or ea'h in,ivi,al s=ste ,e.ine, release ,e.initions that se 'ontent vie4s as ti-ease, snashots o. 'ontent  .inegranlar a''ess 'ontrol o. ea'h 'on.igration o?e't t=e in'l,ing rea,onl= roles .or reorting  a,iting  enhan'e, 'on.igration -anage-ent in'l,ing ,ri.t -anage-ent an, reorting ase, on Pet  rovisioning o. all in.or-ation via C* an, AP to allo4 e$ort to or s=n' 4ith e$ternal 'on.igration -anage-ent s=ste-s or tools

Ho% Sate""ite  Su&&orts .our Incident Management /rocess Satellite 6 'an sort the in'i,ent -anage-ent ro'ess in varios 4a=s:  'entralie, overvie4 o. all s=ste-s in'l,ing reorting @,ashoar,B  ,etaile, in.or-ation o. ea'h s=ste- in'l,ing the event histor= o. re'ent 'hanges  integration o. Re, at A''ess nsights as a ne4 .eatre o. Satellite 6/1


'&1

www%red#at%com

Appendix I - Sample Puppet Modules used inside (his se'tions lists all Pet -o,les se, in the soltion gi,e in'l,ing a short ,es'rition 4hat the= 'on.igre an, 4hi'h ara-eters the= reGire/

Sample Puppet module for ntp configuration 4onfigures,  nstallation o. nt r- a')age  Starting nt ,ae-on  Enaling nt ,ae-on .or atostart d ill e restarte, ato-ati'all= i. 'on.igration is 'hange,  Con.igre nt to s=n'hronie .ro- a single or list o. servers d Con.igration throgh te-late d Uses Mool/nt/org as ,e.alt 'an e overri,,en throgh S-art Class Para-eter .anifestinit%ppC, 'lass nt @ ntServers  Hool/nt/orgH B\ a')age \ HntH: ensre ` installe, ] .ile \ Het'nt/'on.H: ensre ` .ile 'ontent ` te-late@Hntnt/erHB reGire ` Pa')ageYHntH[ o4ner ` HrootH gro ` HrootH -o,e ` H06H noti.= ` Servi'eYHnt,H[ ] servi'e \ Hnt,H: ensre ` HrnningH enale ` tre hasstats ` tre hasrestart ` tre ]

www%red#at%com

'&'


]

3emplatentp%er*C,  #or -ore in.or-ation aot this .ile see the -an ages  nt/'on.@5B nta''@5B ntath@5B nt'lo')@5B nt-is'@5B nt-on@5B/ ,ri.t.ile varlint,ri.t  Per-it ti-e s=n'hroniation 4ith or ti-e sor'e t ,o not  er-it the sor'e to Ger= or -o,i.= the servi'e on this s=ste-/ restri't ,e.alt )o, no-o,i.= notra noeer noGer= restri't 6 ,e.alt )o, no-o,i.= notra noeer noGer=  Per-it all a''ess over the looa') inter.a'e/ (his 'ol,  e tightene, as 4ell t to ,o so 4ol, e..e't so-e o.  the a,-inistrative .n'tions/ restri't 127/0/0/1 restri't 6 ::1  osts on lo'al net4or) are less restri'te,/ restri't 192/16"/1/0 -as) 255/255/255/0 no-o,i.= notra  Use li' servers .ro- the ool/nt/org ro?e't/  Please 'onsi,er ?oining the ool @htt:444/ool/nt/org?oin/ht-lB/ server 0/rhel/ool/nt/org irst server 1/rhel/ool/nt/org irst server 2/rhel/ool/nt/org irst server !/rhel/ool/nt/org irst

[ W+ntpServersX%flatten%eac# do \server\ )[ server [ server [[ if +i*urstena*le  true )[ i*urst[ end [ [ end )[ roa,'ast 192/16"/1/255 ato)e=  roa,'ast server roa,'ast'lient  roa,'ast 'lient roa,'ast 22/0/1/1 ato)e=  -lti'ast server -lti'ast'lient 22/0/1/1  -lti'ast 'lient -an='astserver 2!9/255/25/25  -an='ast server -an='ast'lient 2!9/255/25/25 ato)e=  -an='ast 'lient  Un,is'iline, *o'al Clo')/ (his is a .a)e ,river inten,e, .or a')  an, 4hen no otsi,e sor'e o. s=n'hronie, ti-e is availale/ server 127/127/1/0  lo'al 'lo') .,ge 127/127/1/0 strat- 10  Enale li' )e= 'r=tograh=/ 'r=to


'&5

www%red#at%com

in'l,e.ile et'nt'r=to4  Le= .ile 'ontaining the )e=s an, )e= i,enti.iers se, 4hen oerating  4ith s=--etri' )e= 'r=tograh=/ )e=s et'nt)e=s  Se'i.= the )e= i,enti.iers 4hi'h are trste,/ trste,)e=  " 2  Se'i.= the )e= i,enti.ier to se 4ith the nt,' tilit=/ reGest)e= "  Se'i.= the )e= i,enti.ier to se 4ith the ntG tilit=/ 'ontrol)e= "  Enale 4riting o. statisti's re'or,s/ statisti's 'lo')stats 'r=tostats loostats eerstats

ReGire, S-art Class Para-eter: Parameter

4omment

ntServers @otionalB

'an e a string @single serverB or arra= @-ltile serversB E$a-le: ntServer  bnt/e$a-le/'o-O ntServer  Y bnt1/e$a-le/'o-OOnt2/e$a-le/'o-OOnt!/e$a-le/'o-O [

#or S-art Class Para-eter 'on.igration see se'tion S-art Class Para-eters / nt tree: nt  'he')s-s/?son  -ani.ests  j init/  -eta,ata/?son  Ra)e.ile  READE/-,  se'   'lasses   j initse'/r  j se'heler/r  te-lates  j nt/er www%red#at%com

'&8


j tests j init/

Sample Puppet Module for Zabbix Monitoring agent configuration 4onfigures,  nstall ai$agent a')age d *atest availale = ,e.alt  Start ai$agent ,ae-on  Enale ai$agent ,ae-on .or atostart d ill e restarte, ato-ati'all= i. 'on.igration is 'hange,  Con.igre d Con.igration throgh te-late .anifestinit%ppC, 'lass ai$ @ version  HlatestH server  HH a')age  Hai$agentH '.g.ile  Het'ai$ai$agent,/'on.H B\ a')age \ a')age: ensre ` version ] .ile \ '.g.ile: ensre ` .ile 'ontent ` te-late@Hai$ai$agent,/erHB reGire ` Pa')ageYa')age[ o4ner ` HrootH gro ` HrootH -o,e ` H06H noti.= ` Servi'eYHai$agentH[ ] servi'e \ Hai$agentH: ensre ` HrnningH enale ` tre hasstats ` tre hasrestart ` tre ] ]


'&(

www%red#at%com

3emplatea**i?agent%er*C,  (his is a 'on.ig .ile .or the Jai$ agent ,ae-on @Uni$B  (o get -ore in.or-ation aot Jai$ visit htt:444/ai$/'o ENERA* PARAE(ERS 

Pi,#ilevarrnai$ai$agent,/i,

*og#ilevarlogai$ai$agent,/log  %tion: *og#ileSie  a$i-- sie o. log .ile in &/  0  ,isale ato-ati' log rotation/   an,ator=: no  Range: 0102  De.alt:  *og#ileSie1 *og#ileSie0  %tion: Deg*evel  Se'i.ies ,eg level  0  asi' in.or-ation aot starting an, stoing o. Jai$ ro'esses  1  'riti'al in.or-ation  2  error in.or-ation  !  4arnings    .or ,egging @ro,'es lots o. in.or-ationB   an,ator=: no  Range: 0  De.alt:  Deg*evel!  %tion: Sor'eP  Sor'e P a,,ress .or otgoing 'onne'tions/   an,ator=: no  De.alt:  Sor'eP  %tion: EnaleRe-oteCo--an,s  hether re-ote 'o--an,s .ro- Jai$ server are allo4e,/  0  not allo4e,  1  allo4e, 

www%red#at%com

'&6


 an,ator=: no  De.alt:  EnaleRe-oteCo--an,s0  %tion: *ogRe-oteCo--an,s  Enale logging o. e$e'te, shell 'o--an,s as 4arnings/  0  ,isale,  1  enale,   an,ator=: no  De.alt:  *ogRe-oteCo--an,s0  Passive 'he')s relate,  %tion: Server  *ist o. 'o--a ,eli-ite, P a,,resses @or hostna-esB o. Jai$ servers/  n'o-ing 'onne'tions 4ill e a''ete, onl= .ro- the hosts liste, here/  . Pv6 sort is enale, then H127/0/0/1H H::127/0/0/1H H::....:127/0/0/1H are treate, eGall=/   an,ator=: no  De.alt:  Server Server_F server F`  %tion: *istenPort  Agent 4ill listen on this ort .or 'onne'tions .ro- the server/   an,ator=: no  Range: 102!2767  De.alt:  *istenPort10050  %tion: *istenP  *ist o. 'o--a ,eli-ite, P a,,resses that the agent shol, listen on/  #irst P a,,ress is sent to Jai$ server i. 'onne'ting to it to retrieve list o. a'tive 'he')s/   an,ator=: no  De.alt:  *istenP0/0/0/0  %tion: StartAgents  N-er o. re.or)e, instan'es o. ai$agent, that ro'ess assive 'he')s/  . set to 0 ,isales assive 'he')s an, the agent 4ill not listen on an= (CP ort/   an,ator=: no  Range: 0100


'&9

www%red#at%com

 De.alt:  StartAgents!  A'tive 'he')s relate,  %tion: ServerA'tive  *ist o. 'o--a ,eli-ite, P:ort @or hostna-e:ortB airs o. Jai$ servers .or a'tive 'he')s/  . ort is not se'i.ie, ,e.alt ort is se,/  Pv6 a,,resses -st e en'lose, in sGare ra')ets i. ort .or that host is se'i.ie,/  . ort is not se'i.ie, sGare ra')ets .or Pv6 a,,resses are otional/  . this ara-eter is not se'i.ie, a'tive 'he')s are ,isale,/  E$a-le: ServerA'tive127/0/0/1:20051ai$/,o-ainY::1[:!0051::1Y12.'::1[   an,ator=: no  De.alt:  ServerA'tive ServerA'tive127/0/0/1  %tion: ostna-e  UniGe 'ase sensitive hostna-e/  ReGire, .or a'tive 'he')s an, -st -at'h hostna-e as 'on.igre, on the server/  ;ale is a'Gire, .ro- ostna-ete- i. n,e.ine,/   an,ator=: no  De.alt:  ostna-e ostna-eJai$ server  %tion: ostna-ete te- se, .or generating ostna-e i. it is n,e.ine,/ gnore, i. ostna-e is ,e.ine,/  Does not sort UserPara-eters or aliases/   an,ator=: no  De.alt:  ostna-ete-s=ste-/hostna-e  %tion: osteta,ata  %tional ara-eter that ,e.ines host -eta,ata/  ost -eta,ata is se, at host atoregistration ro'ess/  An agent 4ill isse an error an, not start i. the vale is over li-it o. 255 'hara'ters/  . not ,e.ine, vale 4ill e a'Gire, .ro- osteta,atate-/   an,ator=: no  Range: 0255 'hara'ters  De.alt:  osteta,ata  %tion: osteta,atate-

www%red#at%com

'&=


 %tional ara-eter that ,e.ines an ite- se, .or getting host -eta,ata/  ost -eta,ata is se, at host atoregistration ro'ess/  Dring an atoregistration reGest an agent 4ill log a 4arning -essage i.  the vale retrne, = se'i.ie, ite- is over li-it o. 255 'hara'ters/  (his otion is onl= se, 4hen osteta,ata is not ,e.ine,/   an,ator=: no  De.alt:  osteta,atate-  %tion: Re.reshA'tiveChe')s  o4 o.ten list o. a'tive 'he')s is re.reshe, in se'on,s/   an,ator=: no  Range: 60!600  De.alt:  Re.reshA'tiveChe')s120  %tion: &..erSen,  Do not )ee ,ata longer than N se'on,s in ..er/   an,ator=: no  Range: 1!600  De.alt:  &..erSen,5  %tion: &..erSie  a$i-- n-er o. vales in a -e-or= ..er/ (he agent 4ill sen,  all 'olle'te, ,ata to Jai$ Server or Pro$= i. the ..er is .ll/   an,ator=: no  Range: 2655!5  De.alt:  &..erSie100  %tion: a$*inesPerSe'on,  a$i-- n-er o. ne4 lines the agent 4ill sen, er se'on, to Jai$ Server  or Pro$= ro'essing HlogH an, HlogrtH a'tive 'he')s/  (he rovi,e, vale 4ill e overri,,en = the ara-eter H-a$linesH  rovi,e, in HlogH or HlogrtH ite- )e=s/   an,ator=: no  Range: 11000  De.alt:  a$*inesPerSe'on,100  AD;ANCED PARAE(ERS   %tion: Alias  Sets an alias .or an ite- )e=/ t 'an e se, to sstitte long an, 'o-le$ ite- )e=


'&&

www%red#at%com

4ith a s-aller an, si-ler one/  ltile Alias ara-eters -a= e resent/ ltile ara-eters 4ith the sa-e Alias )e= are not allo4e,/  Di..erent Alias )e=s -a= re.eren'e the sa-e ite- )e=/  #or e$a-le to retrieve the D o. ser Hai$H:  Aliasai$/seri,:v.s/.ile/rege$Yet'ass4,ai$:/:@Y09[+BX1[  No4 shorthan, )e= ai$/seri, -a= e se, to retrieve ,ata/  Aliases 'an e se, in osteta,atate- t not in ostna-ete- ara-eters/   an,ator=: no  Range:  De.alt:  %tion: (i-eot  Sen, no -ore than (i-eot se'on,s on ro'essing   an,ator=: no  Range: 1!0  De.alt:  (i-eot!  %tion: Allo4Root  Allo4 the agent to rn as HrootH/ . ,isale, an, the agent is starte, = HrootH the agent  4ill tr= to s4it'h to the ser se'i.ie, = the User 'on.igration otion instea,/  as no e..e't i. starte, n,er a reglar ser/  0  ,o not allo4  1  allo4   an,ator=: no  De.alt:  Allo4Root0  %tion: User  Dro rivileges to a se'i.i' e$isting ser on the s=ste-/  %nl= has e..e't i. rn as HrootH an, Allo4Root is ,isale,/   an,ator=: no  De.alt:  Userai$  %tion: n'l,e  Io -a= in'l,e in,ivi,al .iles or all .iles in a ,ire'tor= in the 'on.igration .ile/  nstalling Jai$ 4ill 'reate in'l,e ,ire'tor= in srlo'alet' nless -o,i.ie, ,ring the 'o-ile ti-e/   an,ator=: no  De.alt:  n'l,e n'l,eet'ai$ai$agent,/,

www%red#at%com

500


 n'l,esrlo'alet'ai$agent,/serara-s/'on.  n'l,esrlo'alet'ai$agent,/'on./,  n'l,esrlo'alet'ai$agent,/'on./,^/'on.  USERDE#NED %N(%RED PARAE(ERS   %tion: Unsa.eUserPara-eters  Allo4 all 'hara'ters to e asse, in arg-ents to ser,e.ine, ara-eters/  0  ,o not allo4  1  allo4   an,ator=: no  Range: 01  De.alt:  Unsa.eUserPara-eters0  %tion: UserPara-eter  User,e.ine, ara-eter to -onitor/ (here 'an e several ser,e.ine, ara-eters/  #or-at: UserPara-eter_)e=`_shell 'o--an,`  See Hai$agent,H ,ire'tor= .or e$a-les/   an,ator=: no  De.alt:  UserPara-eter  *%ADA&*E %DU*ES   %tion: *oa,o,lePath  #ll ath to lo'ation o. agent -o,les/  De.alt ,een,s on 'o-ilation otions/   an,ator=: no  De.alt:  *oa,o,lePath\li,ir]-o,les  %tion: *oa,o,le  o,le to loa, at agent start/ o,les are se, to e$ten, .n'tionalit= o. the agent/  #or-at: *oa,o,le_-o,le/so`  (he -o,les -st e lo'ate, in ,ire'tor= se'i.ie, = *oa,o,lePath/  t is allo4e, to in'l,e -ltile *oa,o,le ara-eters/   an,ator=: no  De.alt:  *oa,o,le

ReGire, S-art Class Para-eter: / version a/ ,e.alt is latest a')age in'lsive version 'ol, e a,,e, here to in to a


501

www%red#at%com

se'i.i' version 5/ server a/ a,, the Jai$ -onitoring server PNa-e 6/ a')age a/ -onitoring a')age na-e @,e.alt: ai$agentB 7/ '.g.ile a/ 'on.igration .ile .or -onitoring agent @,e.alt: et'ai$ai$agent/'on.B ai$ tree: ai$  'he')s-s/?son  -ani.ests  j init/  -eta,ata/?son  Ra)e.ile  READE/-,  se'   'lasses   j initse'/r  j se'heler/r  te-lates  j ai$agent,/er j tests j init/

Sample Puppet Module for rsyslog configuration (both client and server) .anifestinit%ppC, 'lass loghost @ -o,e  H'lientH server  HH serverPort  H51H a')age  Hrs=slogH '.g.ile  Het'rs=slog/'on.H B\ i. -o,e  3'lient3 \ te-late  3'lient3

www%red#at%com

50'


] elsi. -o,e  3server3 \ te-late  3server3 ] a')age\ a')age: ensre ` installe, ] .ile\ '.g.ile: ensre ` .ile 'ontent ` te-late@3loghostloghost\te-late]/er3B reGire ` Pa')ageYHrs=slogH[ o4ner ` HrootH gro ` HrootH -o,e ` H06H noti.= ` Servi'eYHrs=slogH[ ] servi'e \ Hrs=slogH: ensre ` HrnningH enale ` tre hasstats ` tre hasrestart ` tre ] ]

(e-late@loghostserver/erB:  rs=slog 'on.igration .ile  #or -ore in.or-ation see srshare,o'rs=slog^rs=slog'on./ht-l  . =o e$erien'e role-s see htt:444/rs=slog/'o-,o'troleshoot/ht-l  %DU*ES   (he i-?ornal -o,le ello4 is no4 se, as a -essage sor'e instea, o. i-$so')/ o,*oa, i-$so')  rovi,es sort .or lo'al s=ste- logging @e/g/ via logger 'o--an,B o,*oa, i-?ornal  rovi,es a''ess to the s=ste-, ?ornal o,*oa, i-)log  rea,s )ernel -essages @the sa-e are rea, .ro- ?ornal,B o,*oa, i--ar)  rovi,es ARL -essage 'aailit=  Provi,es UDP s=slog re'etion o,*oa, i-, UDPServerRn 51  Provi,es (CP s=slog re'etion o,*oa, i-t' nt(CPServerRn 51


505

www%red#at%com

te-late D=na#ile3varlogs=ste-F%S(NAEF/log3 ^/^ fD=na#ile  *%&A* DREC(;ES   here to la'e a$iliar= .iles or)Dire'tor= varlirs=slog  Use ,e.alt ti-esta- .or-at A'tion#ileDe.alt(e-late RSIS*%(ra,itional#ile#or-at  #ile s=n'ing 'aailit= is ,isale, = ,e.alt/ (his .eatre is sall= not reGire,  not se.l an, an e$tre-e er.or-an'e hit A'tion#ileEnaleS=n' on  n'l,e all 'on.ig .iles in et'rs=slog/, n'l,eCon.ig et'rs=slog/,^/'on.  (rn o.. -essage re'etion via lo'al log so')etV  lo'al -essages are retrieve, throgh i-?ornal no4/ %-it*o'al*ogging on  #ile to store the osition in the ?ornal TornalState#ile i-?ornal/state

 RU*ES   *og all )ernel -essages to the 'onsole/  *ogging -'h else 'ltters  the s'reen/ )ern/^ ,ev'onsole  *og an=thing @e$'et -ailB o. level in.o or higher/  DonHt log rivate athenti'ation -essagesQ ^/in.oV-ail/noneVathriv/noneV'ron/none varlog-essages  (he athriv .ile has restri'te, a''ess/ athriv/^ varlogse're  *og all the -ail -essages in one la'e/ -ail/^ varlog-aillog

 *og 'ron st.. 'ron/^

varlog'ron

 Ever=o,= gets e-ergen'= -essages ^/e-erg :o-sr-sg:^  Save ne4s errors o. level 'rit an, higher in a se'ial .ile/

www%red#at%com

508


'ne4s/'rit

varlogsooler

 Save oot -essages also to oot/log lo'al7/^ varlogoot/log

  egin .or4ar,ing rle   (he state-ent et4een the egin /// en, ,e.ine a SN*E .or4ar,ing  rle/ (he= elong together ,o N%( slit the-/ . =o 'reate -ltile  .or4ar,ing rles ,li'ate the 4hole lo')Q  Re-ote *ogging @4e se (CP .or reliale ,eliver=B   An on,is) Gee is 'reate, .or this a'tion/ . the re-ote host is  ,o4n -essages are soole, to ,is) an, sent 4hen it is  again/ A'tionee#ileNa-e .4,Rle1  niGe na-e re.i$ .or sool .iles A'tioneea$Dis)Sa'e 1g  1g sa'e li-it @se as -'h as ossileB A'tioneeSave%nSht,o4n on  save -essages to ,is) on sht,o4n A'tionee(=e *in)e,*ist  rn as=n'hronosl= A'tionRes-eRetr=Cont 1  in.inite retries i. host is ,o4n  re-ote host is: na-ei:ort e/g/ 192/16"/0/1:51 ort otional ^/^ re-otehost:51   en, o. the .or4ar,ing rle 

(e-late@loghost'lient/erB: rs=slog 'on.igration .ile  #or -ore in.or-ation see srshare,o'rs=slog^rs=slog'on./ht-l  . =o e$erien'e role-s see htt:444/rs=slog/'o-,o'troleshoot/ht-l  %DU*ES   (he i-?ornal -o,le ello4 is no4 se, as a -essage sor'e instea, o. i-$so')/ o,*oa, i-$so')  rovi,es sort .or lo'al s=ste- logging @e/g/ via logger 'o--an,B o,*oa, i-?ornal  rovi,es a''ess to the s=ste-, ?ornal o,*oa, i-)log  rea,s )ernel -essages @the sa-e are rea, .ro- ?ornal,B o,*oa, i--ar)  rovi,es ARL -essage 'aailit=  Provi,es UDP s=slog re'etion o,*oa, i-, UDPServerRn 51  Provi,es (CP s=slog re'etion o,*oa, i-t' nt(CPServerRn 51

 *%&A* DREC(;ES 


50(

www%red#at%com

 here to la'e a$iliar= .iles or)Dire'tor= varlirs=slog  Use ,e.alt ti-esta- .or-at A'tion#ileDe.alt(e-late RSIS*%(ra,itional#ile#or-at  #ile s=n'ing 'aailit= is ,isale, = ,e.alt/ (his .eatre is sall= not reGire,  not se.l an, an e$tre-e er.or-an'e hit A'tion#ileEnaleS=n' on  n'l,e all 'on.ig .iles in et'rs=slog/, n'l,eCon.ig et'rs=slog/,^/'on.  (rn o.. -essage re'etion via lo'al log so')etV  lo'al -essages are retrieve, throgh i-?ornal no4/ %-it*o'al*ogging on  #ile to store the osition in the ?ornal TornalState#ile i-?ornal/state

 RU*ES   *og all )ernel -essages to the 'onsole/  *ogging -'h else 'ltters  the s'reen/ )ern/^ ,ev'onsole  *og an=thing @e$'et -ailB o. level in.o or higher/  DonHt log rivate athenti'ation -essagesQ ^/in.oV-ail/noneVathriv/noneV'ron/none varlog-essages  (he athriv .ile has restri'te, a''ess/ athriv/^ varlogse're  *og all the -ail -essages in one la'e/ -ail/^ varlog-aillog

 *og 'ron st.. 'ron/^

varlog'ron

 Ever=o,= gets e-ergen'= -essages ^/e-erg :o-sr-sg:^  Save ne4s errors o. level 'rit an, higher in a se'ial .ile/ 'ne4s/'rit varlogsooler  Save oot -essages also to oot/log lo'al7/^ varlogoot/log

www%red#at%com

506


  egin .or4ar,ing rle   (he state-ent et4een the egin /// en, ,e.ine a SN*E .or4ar,ing  rle/ (he= elong together ,o N%( slit the-/ . =o 'reate -ltile  .or4ar,ing rles ,li'ate the 4hole lo')Q  Re-ote *ogging @4e se (CP .or reliale ,eliver=B   An on,is) Gee is 'reate, .or this a'tion/ . the re-ote host is  ,o4n -essages are soole, to ,is) an, sent 4hen it is  again/ A'tionee#ileNa-e .4,Rle1  niGe na-e re.i$ .or sool .iles A'tioneea$Dis)Sa'e 1g  1g sa'e li-it @se as -'h as ossileB A'tioneeSave%nSht,o4n on  save -essages to ,is) on sht,o4n A'tionee(=e *in)e,*ist  rn as=n'hronosl= A'tionRes-eRetr=Cont 1  in.inite retries i. host is ,o4n  re-ote host is: na-ei:ort e/g/ 192/16"/0/1:51 ort otional ^/^ _F server F`:_F serverPort F`   en, o. the .or4ar,ing rle 

ReGire, S-art Class Para-eter:  -o,e d ,e.alt: 'lient set to server to 'on.igre rs=slog .or server se  server d e-t= = ,e.alt re-ote log server server has to e a,,e, = P or na-e @to e se, 4hen -o,e is set to 'lientB  serverPort d ,e.alt: 51  a')age d ,e.alt: rs=slog  '.g.ile d ,e.alt: et'rs=slog/'on. *oghost tree: loghost  'he')s-s/?son  -ani.ests  jinit/  -eta,ata/?son  Ra)e.ile  READE/-,  se'   'lasses   j initse'/r  j se'heler/r


509

www%red#at%com

 te-lates   loghost'lient/er  j loghostserver/er j tests j init/

Sample Puppet odule !or additional rpm pa"kages# "orebuildpa"kages ani.est: 'lass 'oreil,a')ages @ )gs  Y vi-enhan'e, s'reen stra'e tree [ B\ a')age\ )gs: ensre ` installe, ] ]

ReGire, S-art Class Para-eter: 1/ )gs a/ ,e.alt: arra= installing: vi-enhan'e, s'reen stra'e tree 'oreil,a')age tree: 'oreil,a')ages  -ani.ests  j init/  -eta,ata/?son  Ra)e.ile  READE/-,  se'   'lasses   j initse'/r  j se'heler/r j tests j init/

Sample Puppet Module for Docker configuration -ani.est@init/B:

www%red#at%com

50=


'lass ,o')er @ version  HlatestH B\ noti.= \3nstalling version version3:] a')age \ H,o')erH: ensre ` version ] .ile \ Het's=s'on.ig,o')erH: ensre ` .ile reGire ` Pa')ageYH,o')erH[ sor'e ` Het:-o,les,o')er,o')erH o4ner ` HrootH gro ` HrootH -o,e ` H60H noti.= ` Servi'eYH,o')erH[ ] servi'e \ H,o')erH: ensre ` rnning enale ` tre hasrestart ` tre hasstats ` tre reGire ` Pa')ageYH,o')erH[ ] ]

.ile@,o')erB:  et's=s'on.ig,o')er  o,i.= these otions i. =o 4ant to 'hange the 4a= the ,o')er ,ae-on rns %P(%NSHselin$enale,  0/0/0/0:2!  ni$:varrn,o')er/so') inse'reregistr= registr=/a''ess/re,hat/'o-H D%CLERCER(PA(et',o')er  %n an SE*in$ s=ste- i. =o re-ove the selin$enale, otion =o  also nee, to trn on the ,o')ertransitionn'on.ine, oolean/  setseool P ,o')ertransitionn'on.ine, 1  *o'ation se, .or te-orar= .iles s'h as those 'reate, =  ,o')er loa, an, il, oerations/ De.alt is varli,o')ert-  Can e overri,en = setting the .ollo4ing environ-ent variale/


50&

www%red#at%com

 D%CLER(PDRvart-  Controls the et''ron/,ail=,o')erlogrotate 'ron ?o stats/  (o ,isale n'o--ent the line elo4/  *%R%(A(E.alse

ReGire, S-art Class Para-eter: 1/ version a/ ,e.alt: latest 'an e se, to in Do')er to a se'i.i' a')age version ,o')er tree: ,o')er  'he')s-s/?son  .iles  j ,o')er  -ani.ests  j init/  -eta,ata/?son  Ra)e.ile  READE/-,  se'   'lasses   j initse'/r  j se'heler/r j tests j init/

Sample Puppet Module for git configuration (both client and server) .anifestinit%ppC, Class is e-t= it is a M-eta 'lass to e ale to ,ire'tl= 'hoose s'lass git::'lient or git::server/ 'lass git \ ]

git,,server ani.est@server/B:

www%red#at%com

510


'lass git::server @ reo  Het-o,lesH reo,ir HsrvgitH gita')age  Hgit19gitH a')ageensre  Hinstalle,H B\ e$e' \ 3rhs'la'tivategit3: reGire ` Pa')ageY3gita')age3[ 'o--an, ` 3s'l enale git19 ash3 ath ` 3srin3 ] .ile \ 3et'ro.ile/,s'lgit/sh3: ensre ` .ile -o,e ` 363 o4ner ` 3root3 gro ` 3root3 sor'e ` 3et:-o,lesgits'lgit/sh3 ] a')age \ 3gita')age3: ensre ` a')ageensre ] a')age \ 3htt,3: ensre ` a')ageensre ] servi'e \ 3htt,3: ensre ` 3rnning3 reGire ` Pa')ageY3htt,3[ ] .ile \ 3reo,ir3: ensre ` ,ire'tor= o4ner ` 3root3 gro ` 3root3 -o,e ` 37753 ] e$e' \ 3gitinitare3: 'o--an, ` 3git init are \reo,ir]\reo]/git3 ath ` Y Hotrhgit19rootsrinH HsrinH [ onl=i. ` 3test Q , \reo,ir]\reo]/gito?e'ts3 reGire ` Y Pa')ageY3gita')age3[ #ileY3reo,ir3[ E$e'Y3rhs'la'tivategit3[ [ e.ore ` #ileY3\reo,ir]\reo]/githoo)sostre'eive3[ ] e$e' \ 3git444'lone3:


511

www%red#at%com

'o--an, ` 3git 'lone \reo,ir]\reo]/git3 '4, ` 3var444ht-l3 ath ` Y Hotrhgit19rootsrinH HsrinH [ onl=i. ` 3test Q , var444ht-l\reo]3 reGire ` Y Pa')ageY3gita')age3[ Pa')ageY3htt,3[ E$e'Y3gitinitare3[ [ ] .ile \ 3\reo,ir]\reo]/githoo)sostre'eive3: ensre ` .ile o4ner ` 3root3 gro ` 3root3 -o,e ` 37553 sor'e ` 3et:-o,lesgitostre'eive3 ] ]

#iles@ostre'eiveB: Qsrinenv ash ', var444ht-let-o,les KK git ll trn'ate s 0 PU*PAN#ES( .or .ile in @.in, / i 4holena-e 3^)g^/tar/g3B ,o e'ho .ilejsha256s- .ile  a4) H\ rint 1 ]Hjjstat ' HFsH .ilej `` PU*PAN#ES( ,one

#iles@s'lgit/shB: Qinash sor'e otrhgit19enale e$ort 8SC*S3js'l enale git19 He'ho 8SC*SHj3

ReGire, S-art Class Para-eter:  reo d Reositor= na-e ,e.alt: bet-o,lesH  reo,ir d Dire'tor= 4here the Mreo is la'e, ,e.alt: bsrvgitO  gita')age d Re, at So.t4are Colle'tion git a')age version ,e.alt: Hgit19gitH  a')ageensre d De.ine 4ether a')age shol, e installe, or re-ove, ,e.alt: Hinstalle,H

git,,client ani.est@'lient/B: www%red#at%com

51'


'lass git::'lient @ gita')age  HgitH a')ageensre  Hinstalle,H B\ a')age \ 3gita')age3: ensre ` a')ageensre ] ]

ReGire, S-art Class Para-eter:  gita')age d Mgit = ,e.alt 'ol, e rela'e, .or e$a-le 4ith Re, at So.t4are Colle'tions git version  a')ageensre d ,e.alt: installe, 'ol, e 'hange, to Masent to re-ove at an= ti-e/ it tree: git  'he')s-s/?son  .iles   ostre'eive  j s'lgit/sh  -ani.ests   'lient/   init/  j server/  -eta,ata/?son  Ra)e.ile  READE/-,  se'   'lasses   j initse'/r  j se'heler/r j tests j init/


515

www%red#at%com

Sample Puppet Module for rhevagent  nstall rhev-gestagent a')age onl= i. the s=ste- is rnning on RE; =ervisor there.ore it 'an e assigne, to asoltel= ever= host/  Sets the a')age na-e to rhem-guest-agent-common .or RE*7 an, rhem-guest-agent .or RE*6/  Enales an, starts the servi'e ani.est@init/B: 'lass rhevagent \ i. ro,'tna-e  3RE; =ervisor3 \ 'ase oeratings=ste--a?release \ H7H: \ )g  3rhev-gestagent'o--on3 ] @56B: \ )g  3rhev-gestagent3 ] ] a')age \ )g: ensre ` resent e.ore ` Servi'eYHovirtgestagentH[ ] servi'e \ HovirtgestagentH: ensre ` rnning enale ` tre hasrestart ` tre hasstats ` tre ] ] ]

rhevagent tree: rhevagent  'he')s-s/?son  -ani.ests  j init/  -eta,ata/?son  Ra)e.ile www%red#at%com

518


 READE/-,  se'   'lasses   j initse'/r  j se'heler/r j tests j init/

Sample Puppet Module for vmwaretools  nstall v-4are tools a')age onl= i. the s=ste- is rnning on v-4are there.ore it 'an e assigne, to asoltel= ever= host/  Sets the a')age na-e to open-m-tools .or RE*7 an, mware-tools .or RE*6/  Enales an, starts the servi'e ani.est@init/B: 'lass v-4aretools \ i. virtal  3v-4are3 \ 'ase oeratings=ste--a?release \ H7H: \ )g  3oenv-tools3 servi'ena-e  3v-tools,3 rovi,ert=e  3s=ste-,3 ] H6H: \ )g  Y3v-4aretools'ore33v-4aretoolses$no$3[ servi'ena-e  3v-4aretoolsservi'es3 rovi,ert=e  3start3 ] ] a')age \ )g: ensre ` resent e.ore ` Servi'eYservi'ena-e[ ] servi'e \ servi'ena-e: ensre ` rnning rovi,er ` rovi,ert=e enale ` tre hasrestart ` tre hasstats ` tre


51(

www%red#at%com

] ] ]

v-4aretools tree: v-4aretools  'he')s-s/?son  -ani.ests  j init/  -eta,ata/?son  Ra)e.ile  READE/-,  se'   'lasses   j initse'/r  j se'heler/r j tests j init/

Sample Puppet Module for acmeweb (frontend and backend)  nstalls an, 'on.igres the a'-e 4esite ,istrite, on t4o hosts one .or the .ronten, @aa'he+hB an, one .or the a')en, @-=sGl-aria,B d #ronten,:  nstalls aa'he + h a')ages  E$tra'ts the 'rrentl= latest or,Press version shie, as a .ile throgh et -o,le @version: /2/2B  Coies the or,Press .iles to var444ht-l i. the= ,o not alrea,= e$ist there  Con.igres /ar/www/html/wp-config.php 4ith a')en, 'onne'tion ara-eter  an,ator= to set s-art 'lass ara-eter .or a')en, 'onne'tion d &a')en,:  nstalls -=sGl-aria,  Con.igres a')en, ,ataase @,ataase na-e ser an, ass4or,B ase, on s-art 'lass ara-eter  an,ator= to set s-art 'lass ara-eter .or a')en, 'on.igration ani.est@init/B:

www%red#at%com

516


Class is e-t= it is a M-eta 'lass to e ale to ,ire'tl= 'hoose s'lass a'-e4e::.ronten, or a'-e4e::a')en,/ 'lass a'-e4e \ ]

[email protected],/B: 'lass a'-e4e::.ronten, @ ,na-e ,ser ,ass4or, ,host

 a'-e4e::ara-s::,na-e  a'-e4e::ara-s::,ser  a'-e4e::ara-s::,ass4or,  a'-e4e::ara-s::,host

B\ in'l,e a'-e4e::4e .ile \ Ht-latest/tar/gH: ensre ` resent sor'e ` 3et:-o,lesa'-e4elatest/tar/g3 ] e$e' \ He$tra'tH: '4, ` 3t-3 'o--an, ` 3tar $v. latest/tar/g3 'reates ` 3t-4or,ress3 reGire ` #ileYHt-latest/tar/gH[ ath ` YHinH[ ] e$e' \ H'o=H: 'o--an, ` 3' r t-4or,ress^ var444ht-l3 reGire ` E$e'YHe$tra'tH[ 'reates ` 3var444ht-l4'ontent3 ath ` YHinH[ ] .ile \ Hvar444ht-l4'on.ig/hH: ensre ` resent reGire ` E$e'YH'o=H[ 'ontent ` te-late@3a'-e4e4'on.ig/h/er3B ] ]

ReGire, S-art Class Para-eter:  ,na-e d ,e.alt: 4or,ress set to overri,e ,e.alt ,ataase na-e


519

www%red#at%com

 ,host d ,e.alt: e-t= set the i a,,ress or .G,n o. the ,ataase a')en,  ,ser d ,e.alt: 4 set to overri,e ,e.alt ser to 'onne't to the ,ataase a')en,  ,serass4or, d ,e.alt: e-t= set the ass4or, to 'onne't to the ,ataase a')en, ani.est@4e/B: 'lass a'-e4e::4e \  nstall Aa'he 'lass \Haa'heH: ---o,le ` Hre.or)H ]  A,, sort .or PP 'lass \H::aa'he::-o,::hH: ] ]

ani.est@a')en,/B: 'lass a'-e4e::a')en, @ rootass4or,  a'-e4e::ara-s::rootass4or, ,na-e  a'-e4e::ara-s::,na-e ,host  a'-e4e::ara-s::,host ,ser  a'-e4e::ara-s::,ser ,serass4or,  a'-e4e::ara-s::,serass4or, ,serhost  3\,ser]\,host]3 ,serhost,  3\,ser]\,host]\,na-e]/^3 B\ 'lass \ H::-=sGl::serverH: rootass4or, ` rootass4or, ,ataases ` \ 3\,na-e]3 ` \ ensre ` HresentH 'harset ` Ht."H ] ] sers ` \ 3\,serhost]3 ` \ ensre ` resent ass4or,hash ` -=sGlass4or,@3\,serass4or,]3B

www%red#at%com

51=


] ] grants ` \ 3\,serhost,]3 ` \ ensre ` HresentH otions ` YHRAN(H[ rivileges ` YHA**H[ tale ` 3\,na-e]/^3 ser ` 3\,serhost]3 ] ] overri,eotions ` \ -=sGl, ` \ in,a,,ress ` H0/0/0/0H] Allo4 re-ote 'onne'tions ] ] 'lass \ H::-=sGl::'lientH: reGire ` ClassYH::-=sGl::serverH[ in,ingsenale ` tre ] ]

ReGire, S-art Class Para-eter:  rootass4or, d ,e.alt: e-t= set the root ass4or,  ,na-e d ,e.alt: 4or,ress set to overri,e ,e.alt ,ataase na-e  ,host d ,e.alt: e-t= set the i a,,ress or .G,n o. the ,ataase a')en,  ,ser d ,e.alt: 4 set to overri,e ,e.alt ser to 'onne't to the ,ataase a')en,  ,serass4or, d ,e.alt: e-t= set the ass4or, .or ,ataase 'onne'tion

Aote, a')en, an, .ronten, ara-eters have to e aligne, in or,er .or the .ronten, to e ale to 'onne't to the a')en,/ Set the ara-eter vales on host level in or,er to e ale to rovision a'-e4e -ltile ti-es/

ani.est@ara-s/B: 'lass a'-e4e::ara-s \


51&

www%red#at%com

rootass4or,  HH ,na-e  H4or,ressH ,ser  H4H ,serass4or,  HH ,host  HH ]

(e-lates@4'on.ig/h/erB: _fh ,e.ine@HD&NAEH H_F ,na-e F`HBV ,e.ine@HD&USERH H_F ,ser F`HBV ,e.ine@HD&PASS%RDH H_F ,serass4or, F`HBV ,e.ine@HD&%S(H H_F ,host F`HBV ,e.ine@HD&CARSE(H Ht."HBV ,e.ine@HD&C%**A(EH HHBV ,e.ine@HAU(LEIH Ht =or niGe hrase hereHBV ,e.ine@HSECUREAU(LEIH Ht =or niGe hrase hereHBV ,e.ine@H*%EDNLEIH Ht =or niGe hrase hereHBV ,e.ine@HN%NCELEIH Ht =or niGe hrase hereHBV ,e.ine@HAU(SA*(H Ht =or niGe hrase hereHBV ,e.ine@HSECUREAU(SA*(H Ht =or niGe hrase hereHBV ,e.ine@H*%EDNSA*(H Ht =or niGe hrase hereHBV ,e.ine@HN%NCESA*(H Ht =or niGe hrase hereHBV talere.i$  H4HV ,e.ine@HPDE&UH .alseBV i. @ Q,e.ine,@HA&SPA(HB B ,e.ine@HA&SPA(H ,irna-e@#*EB / HHBV reGireon'e@A&SPA( / H4settings/hHBV

#iles@latest/tar/gB:  or,Press ;ersion /2/2: latest/tar/g a'-e4e tree: a'-e4e  'he')s-s/?son  .iles  j latest/tar/g  -ani.ests   a')en,/   .ronten,/

www%red#at%com

5'0


  init/   ara-s/  j 4e/  -eta,ata/?son  Ra)e.ile  READE/-,  se'   'lasses   j initse'/r  j se'heler/r  te-lates  j 4'on.ig/h/er j tests j init/


5'1

www%red#at%com

Appendix II: Scripts Foreman Hook +1 B<containerhost*sh n or,er .or the s'rit 05'ontrainerhost/sh to 4or) the .ore-an ser nee,s a ser to to e$e'te ha--er 4ithot ass4or,/ srshare.ore-an/ha--er'li'on.ig/=-l :.ore-an: :host: lo'alhost :serna-e: a,-in :ass4or,: ^^^^^ :organiation: ACE

a,,itionall= the ser .ore-an 4ants to 4rite te-orar= in.or-ation into a /'a'he .ol,er in his ho-e ,ire'tor=/ Sa,l= .ore-an 'annot 'reate the ,ire'tor= e'ase he is not the o4ner o. his o4n ho-e ,ire'tor=/ (hs 4e have to 'reate the /'a'he ,ire'tor= an, give .ore-an the o4nershi in or,er .or the hoo) s'rit to e e$e'te,/ -),ir srshare.ore-an/'a'he 'ho4n .ore-an srshare.ore-an/'a'he

   

A,, the s'rit n,er /usr/share/foreman/config/hooks/host/managed/before_proision/ 'ho4n to .ore-an 'h-o, +$ restore'on Rv# srshare.ore-an'on.ighoo)s

'ontainerhost2 @ha--er ott 'sv host list  a4) # 33 3'ontainerhost \rint X]3B i. Y n  [ then i. YY   3'ontainerhost3 [[ then slee 600 %R33 *%C33 ha--er 'o-teresor'e 'reate X na-e 3\'ontainerhost]3 X ,es'rition 3'ontainerhost \'ontainerhost]3 X rl 3htts:\'ontainerhost]:2!3 X

www%red#at%com

5''


rovi,er 3,o')er3 X organiations 3\%R]3 X lo'ations 3\*%C]3 .i .i

Foreman Hook 91 +B"ogger*sh     

A,, the s'rit n,er /usr/share/foreman/config/hooks/host/managed/before_proision/ 'ho4n to .ore-an 'h-o, +$ restore'on Rv# srshare.ore-an'on.ighoo)s A,, s,o rle

logger 1 2

#or the logger s'rit to 4or) it is -an,ator= to a,, the .ollo4ing s,oers rle in or,er .or .ore-an to se the logger 'o--an,: .ore-an A**@A**B

N%PASSD:srinlogger

Foreman Hook :1 B+,abbi0hostcreate*sh    

A,, the s'rit n,er /usr/share/foreman/config/hooks/host/managed/before_proision/ 'ho4n to .ore-an 'h-o, +$ restore'on Rv# srshare.ore-an'on.ighoo)s

JA&&8SER;ER33 USER33 PASS%RD33 AU(@'rl i 8 P%S(  HContent(=e:ali'ation?sonH , X H\ 3?sonr'3: 32/03 3-etho,3:3ser/login3 3ara-s3: \ 3ser3:3H\USER]H3


5'5

www%red#at%com

3ass4or,3:3H\PASS%RD]H3 ] 3i,3:1 ]H htt:\JA&&8SER;ER]ai$ai?sonr'/h B (%LEN@e'ho AU(  a4) # 33 H\rint !]H  a4) # 3:3 H\rint 2]HB #DN3\2]3 P@ha--er ott 'sv host list sear'h 3na-e  \#DN]3  a4) # 33 3@X2  \#DN]B \rint X5]3B AC@ha--er ott 'sv host list sear'h 3na-e  \#DN]3  a4) # 33 3@X2   \#DN]B \rint X6]3B ACA@e'ho \AC]  a4) # 3:3 H\rint 1 2 !]HB AC&@e'ho \AC]  a4) # 3:3 H\rint  5 6]HB ro D 7  *in$ server (e-late D 1010  (e-late CP Ping (e-late D 10001  (e-late %S *in$   N%(CE   . the hoo) ,oes .ail -a)e sre the Ds are the sa-e in Jai$ other4ise a,?st the Ds   'rl i 8 P%S(  HContent(=e:ali'ation?sonH , X H\ 3?sonr'3: 32/03 3-etho,3: 3host/'reate3 3ara-s3: \ 3host3: 3H\#DN]H3 3inter.a'es3: Y \ 3t=e3: 1 3-ain3: 1 3sei3: 1 3i3: 3H\P]H3 3,ns3: 33 3ort3: 3100503 ] [ 3gros3: Y \ 3groi,3: 373 ] [ 3te-lates3: Y \ 3te-latei,3: 310103 3te-latei,3: 3100013 ] [ 3inventor=3: \ 3-a'a,,ressa3: 3H\ACA]H3 3-a'a,,ress3: 3H\AC&]H3

www%red#at%com

5'8


] ] 3ath3: H\(%LEN]H 3i,3: 1 ]H htt:\JA&&8SER;ER]ai$ai?sonr'/h


5'(

www%red#at%com

Appendix III: Naming Convention /tem Pro,'t

Aaming 4onvention _ ven,or or strea- ro?e't `  _ ro,'t na-e or rose ` Y  _ RE* release ` [ e$a-le:  Jai$onitoring  ;4are(oolsRE*6

Reositor= .or RPs

_ ven,or `  _ ro,'t `  _ os `  _ variant `  _ version `  _ ar'hite'tre `  _ reo t=e ` E$a-le: v-4aretoolsrhelserver6$"66r-s

Reositor= .or Pet o,les

/f -ou #ave multiple puppet supplier vendor or internal teamsC, generi': _ven,or`_ro,'t`_reo t=e` e$a-le: ai$-onitoringet 4etea-a'-e4eet

*i.e'='le Environ-ent

Y _ ath na-e `  [ DE;  A  YUA(  [ PR%D e$a-le: DE; ` A ` PR%D eDE; ` eA ` eUA( ` ePR%D

Content;ie4

'v  _ osa `  _ ro.ile na-e ` Y  _ version or release ` [ e$a-le:  'vosrhel  _ 7Server  6Server `  'vagit

Co-ositeConten ''v  _ iin.ra `  _ role na-e ` Y  _ version or release ` [ t;ie4 e$a-le:  ''vin.ra'ontainerhost  ''vigitserver A'tivationLe=

a't  _ li.e'='le environ-ent `  _ iin.raos `  _ role na-e `  _ ar'hite'tre ` e$a-le: 5/ a't,evosrhel7server$"66 6/ a'tGain.ra'ontainerhost$"66 7/ a'tro,ia'-e4e$"66

ostro

www%red#at%com

(his ,een,s on the host gro hierar'h= -o,el se, @see 'hater bost ro S'enariosO .or .rther ,etailsB// . =o are sing a .lat str'tre 4hi'h reGires at least ! t=es @*C EN; APP(IPE RE* ;ERS%NB:

5'6


_stage`  _'ategor=`  _at=e`  _rhel -a?or release` Provisioning (e-late

_ org ` _ rovisioning te-late na-e ` e$a-le: ACE Li')start De.alt

Partition (ales

tale  _ org `  _ tale na-e ` e$a-le: talea'-egitserver

Co-te Resor'es

_ org `  _ 'o-te resor'e na-e `  _ lo'ation ` e$a-le: a'-erhelososton

Pet o,les

_ athor `  _-o,le na-e` e$a-le: (%sgit


5'9

www%red#at%com

Appendix IV: Software Versions Overview (he entire la set has een ase, on Satellite 6/1/0 @li' etaB/ (he .ollo4ing a')age versions have een se, @=o 'an get this list i. =o 'li') on A,-inister c AotB: nstalle, Pa')ages

'an,lein0/9/9/!1/el7/noar'h 'an,lein'o--on1/0/221/el7/noar'h 'an,leingi'e!/02re,hat1/el7/noar'h 'an,leins'l15/el7/noar'h 'an,leins'lGart2/1/56/el7/noar'h 'an,leins'lrhino1/7R!!/el7/noar'h 'an,leins'lrnti-e15/el7/noar'h 'an,leinselin$0/9/9/!1/el7/noar'h 'an,leinto-'at0/9/9/!1/el7/noar'h elasti'sear'h0/90/107/el7/noar'h in.60/'oe/-'/re,hat/'o-Gi,ro)er1/01/noar'h in.60/'oe/-'/re,hat/'o-Gi,'lient'ert1/01/noar'h in.60/'oe/-'/re,hat/'o-Gi,roter'lient1/01/noar'h in.60/'oe/-'/re,hat/'o-Gi,roterserver1/01/noar'h )atello2/2/0/111/el7sat/noar'h )atello'ertstools2/2/11/el7sat/noar'h )atello'o--on2/2/0/111/el7sat/noar'h )atello,eg2/2/0/111/el7sat/noar'h )atello,e.alt'a1/01/noar'h )atelloinstaller2/!/121/el7sat/noar'h )atelloinstallerase2/!/121/el7sat/noar'h )atelloserver'a1/01/noar'h )atelloservi'e2/2/0/111/el7sat/noar'h liGi,,isat'h0/7/el7/$"66 l,o')erlgins0/2/51/el7sat/noar'h l)atello0/51/el7sat/noar'h lno,es'o--on2/6/0/101/el7sat/noar'h lno,esarent2/6/0/101/el7sat/noar'h letlgins2/6/0/101/el7sat/noar'h lettools2/6/0/101/el7sat/noar'h lr-lgins2/6/0/101/el7sat/noar'h lselin$2/6/0/101/el7sat/noar'h

www%red#at%com

5'=


lserver2/6/0/101/el7sat/noar'h =thongo.erGi,2/6/22/el7sat/noar'h =thoniso,ate0/5/0/l/el7sat/noar'h =thon)o-!/0/25/l/el7sat/noar'h =thonlin,ings2/6/0/101/el7sat/noar'h =thonl'o--on2/6/0/101/el7sat/noar'h =thonl,o')er'o--on0/2/51/el7sat/noar'h =thonlet'o--on2/6/0/101/el7sat/noar'h =thonlr-'o--on2/6/0/101/el7sat/noar'h =thonGi,0/!06/el7/noar'h =thonGi,G-.0/!05/el7/$"66 Gi,''lient0/!09/el7/$"66 Gi,''lient,evel0/!09/el7/$"66 Gi,'server0/!09/el7/$"66 Gi,'serverlinearstore0/!09/el7/$"66 Gi,,isat'hroter0/7/el7/$"66 Gi,?ava'lient0/!0!/el7/noar'h Gi,?ava'o--on0/!0!/el7/noar'h Gi,roton'0/9/el7/$"66 Gi,G-.0/!05/el7/$"66 Gi,tools0/!0/el7/noar'h r=19!r=ge-)atello2/2/0/511/el7sat/noar'h r=19!r=ge-Gi,-essaging0/!0/01/el7sat/$"66 r=ge-ha--er'li)atello0/0/7/151/el7sat/noar'h r=ge-s-artro$=l1/0/1/21/el7sat/noar'h


5'&

www%red#at%com

Appendix V: Contributor List As state, in the intro,'tion this soltion gi,e 4as 4ritten 4ith a lot o. int an, i,eas .ro-an= ,i..erent eole/ (he .ollo4ing eole rovi,e, invalale int an, i,eas that 4e have trie, to in'ororate an, ,o'-ent as 4ell as 4e 'ol,/ Aame

No* 3itle

ngri, (o4e=

Csto-er Portal Content E,itor Re, at

Davi, Tran

Senior Ar'hite't Re, at

Al.re,o orale?o Alonso

Senior Do-ain Ar'hite't Re, at

(ho- Carlin

Senior alit= Engineer Re, at

raha- ares

Prin'ial Ar'hite't Re, at

Tstin Sherrill

Senior So.t4are Engineer Re, at

a$i- &rgerhot

Soltion Ar'hite't Re, at

al,irio  Pinheiro

Soltion Ar'hite't Re, at

&rett (hrer

Prin'ial So.t4are Engineer Re, at

Ross / Stot

(e'hni'al Do-ain Ar'hite't Cre,it Sisse

www%red#at%com

550


2015-10_Steps_to_Build_a_Standard_Operating_Environment.pdf

Recommend Documents