Rudder 3.0 - User Manual

Normation SAS and Fabrice Flore-Thebault

Revision History
Revision 3.0.0Nov 2014N

Table of Contents

Introduction
Concepts
Rudder functions
Asset management concepts
Configuration management concepts
Rudder components
Installation
Requirements
Networking
Supported Operating Systems
Hardware specifications and sizing for Rudder Root Server
Install Rudder Server
Install Rudder Root server on Debian or Ubuntu
Install Rudder Root server on SLES
Install Rudder Root server on RHEL-like systems
Initial configuration of your Rudder Root Server
Validate the installation
Install Rudder Agent
Install Rudder Agent on Debian or Ubuntu
Install Rudder Agent on RHEL-like systems
Install Rudder Agent on SLES
Configure and validate
Install Rudder Relay (optional)
On the relay
On the root server
Validation
Adding nodes to a relay server
Upgrade
Caution cases
Upgrading from Rudder 2.11
Upgrading from Rudder 2.6 or 2.10
Known issues
On Debian or Ubuntu
On RHEL or CentOS
On SLES
Technique upgrade
Rudder Web Interface
Authentication
Presentation of Rudder Web Interface
Rudder Home
Node Management
Configuration Management
Administration
Units supported as search parameters
Bytes and multiples
Convenience notation
Supported units
Node Management
Node Inventory
Accept new Nodes
Search Nodes
Quick Search
Advanced Search
Group of Nodes
Configuration Management
Techniques
Concepts
Manage the Techniques
Available Techniques
Directives
Rules
Variables
User defined parameters
System variables
Compliance
Validation workflow in Rudder
What is a Change request ?
How to create a Change request ?
How to validate a Change request ?
Change request and conflicts
Notifications:
Manage your IT
How to
Enforce a line is present in a file only once
Administration
Archives
Archive usecases
Concepts
Archiving
Importing configuration
Deploy a preconfigured instance
Event Logs
Policy Server
Configure allowed networks
Clear caches
Reload dynamic groups
Plugins
Install a plugin
Basic administration of Rudder services
Restart the agent of the node
Restart the root rudder service
Password upgrade
User management
Configuration of the users using a XML file
Configuring an LDAP authentication provider for Rudder
Authorization management
Going further
Monitoring
Monitoring Rudder itself
Monitoring your configuration management
Use Rudder inventory in other tools
Export to a spreadsheet
Use the inventory in Rundeck
Use the inventory in Ansible
Usecases
Dynamic groups by operating system
Library of preventive policies
Standardizing configurations
Advanced usage
Node management
Reinitialize policies for a Node
Completely reinitialize a Node
Change the agent run schedule
Installation of the Rudder Agent
Rudder Agent interactive
Processing new inventories on the server
Agent execution frequency on nodes
Password management
Configuration of the postgres database password
Configuration of the OpenLDAP manager password
Configuration of the WebDAV access password
Policy generation
Regenerate now button
Technique creation
Recommended solution: Technique Editor
Understanding how Technique Editor works
Create Technique manually
REST API
Default setup
Status
Promises regeneration
Dynamic groups regeneration
Technique library reload
Archives manipulation
Multiserver Rudder
Preliminary steps
Install rudder-relay-top
Install rudder-db
Install rudder-ldap
Install rudder-web
Server migration
What files you need
Handle configuration files
Handle CFEngine keys
On your nodes
Mirroring Rudder repositories
Reference
Rudder Server data workflow
Configuration files for Rudder Server
Rudder Agent workflow
Request data from Rudder Server
Launch processes
Identify Rudder Root Server
Inventory
Syslog
Apply Directives
Configuration files for a Node
Packages organization
Packages
Software dependencies and third party components
Generic methods
Command
Directory
File
Group
Http
Logger
Package
Permissions
Schedule
Service
User
Variable
Man pages
rudder(8)
Handbook
Database maintenance
Automatic PostgreSQL table maintenance
PostgreSQL database vacuum
LDAP database reindexing
Migration, backups and restores
Backup
Restore
Migration
Performance tuning
Reports retention
Apache HTTPd
Jetty
Java "Out Of Memory Error"
Configure RAM allocated to Jetty
Optimize PostgreSQL server
CFEngine
Rsyslog
Troubleshooting and common issues
Some reports are in "No report"
If you get no reports at all for the Node
If you get incomplete reporting for the Node
Communication issues between agent and server
DNS issues
Inventory issues
Technique editing
Database is using too much space
Appendix: Glossary