JavaScript is disabled on your browser. Please enable JavaScript to enjoy all the features of this site.
Rudder 2.11 - User Manual
Installation
Resources:
User manual
|
Changelog
|
API reference
Version:
2.11 ESR
|
3.1 ESR
|
3.2
Download as:
epub
|
pdf
Sidebar
Prev
|
Up
|
Next
Requirements
Table of Contents
Networking
Supported Operating Systems
Hardware specifications and sizing for Rudder Root Server
Introduction
Concepts
Rudder functions
Asset management concepts
New Nodes
Search Nodes
Groups of Nodes
Configuration management concepts
Rudder components
Installation
Requirements
Networking
Mandatory flows
Optional flows
DNS - Name resolution
Supported Operating Systems
For Rudder Nodes
For Rudder Root Server
Hardware specifications and sizing for Rudder Root Server
Memory
Disk
Install Rudder Server
Install Rudder Root server on Debian or Ubuntu
Add the Rudder packages repository
Java on Debian/Ubuntu
Install your Rudder Root Server
Incompatibility between Rudder server on Ubuntu and Rudder agents using syslog (RHEL/CentOS 5)
Install Rudder Root server on SLES
Configure the package manager
Add the Rudder packages repository
Install your Rudder Root Server
Install Rudder Root server on RHEL-like systems
Java on RHEL/CentOS
Add the Rudder packages repository
Install your Rudder Root Server
Initial configuration of your Rudder Root Server
Validate the installation
Install Rudder Agent
Install Rudder Agent on Debian or Ubuntu
Install Rudder Agent on RHEL or CentOS
Install Rudder Agent on SLES
Configure and validate
Configure Rudder Agent
Start Rudder Agent:
Validate new Node
Upgrade
Caution cases
Known bugs
On Debian or Ubuntu
On RHEL or CentOS
On SLES
Technique upgrade
Rudder Web Interface
Authentication
Presentation of Rudder Web Interface
Rudder Home
Node Management
Configuration Management
Administration
Units supported as search parameters
Bytes and multiples
Convenience notation
Supported units
Node Management
Node Inventory
Accept new Nodes
Search Nodes
Quick Search
Advanced Search
Group of Nodes
Configuration Management
Techniques
Concepts
Manage the Techniques
Available Techniques
Application management
Distributing files
File state configuration
System settings: Miscellaneous
System settings: Networking
System settings: Process
System settings: Remote access
System settings: User management
Directives
Rules
Variables
User defined parameters
System variables
Compliance
Validation workflow in Rudder
What is a Change request ?
Change request status
Change request management page
Change request detail page
How to create a Change request ?
How to validate a Change request ?
Roles
Self Validations
Change request and conflicts
Notifications:
Pending change requests
Change already proposed on Rule/Directive/Group
Manage your IT
How to
Enforce a line is present in a file only once
Security considerations
Data confidentiality
Private data
Common data
Administration
Archives
Archive usecases
Changes testing
Changes qualification
Concepts
Archiving
Importing configuration
Deploy a preconfigured instance
Event Logs
Policy Server
Configure allowed networks
Clear caches
Reload dynamic groups
Plugins
Install a plugin
Basic administration of Rudder services
Restart the agent of the node
Restart the root rudder service
Restart everything
Restart only one component
Password upgrade
User management
Configuration of the users using a XML file
Generality
Passwords
Configuring an LDAP authentication provider for Rudder
LDAP is only for authentication
Enable LDAP authentication
Authorization management
Pre-defined roles
Custom roles
Going further
Monitoring
Monitoring Rudder itself
Monitoring a Node
Monitoring a Server
Monitoring your configuration management
Use Rudder inventory in other tools
Export to a spreadsheet
Use the inventory in Rundeck
Use the inventory in Ansible
Usecases
Dynamic groups by operating system
Library of preventive policies
Standardizing configurations
Advanced usage
Node management
Reinitialize policies for a Node
Change the agent run schedule
Installation of the Rudder Agent
Static files
Generated files
Services
Configuration
Rudder Agent interactive
Processing new inventories on the server
Verify the inventory has been received by the Rudder Root Server
Process incoming inventories
Validate new Nodes
Prepare policies for the Node
Agent execution frequency on nodes
Checking configuration (CFEngine)
Inventory (FusionInventory)
Password management
Configuration of the postgres database password
Configuration of the OpenLDAP manager password
Configuration of the WebDAV access password
Policy generation
Regenerate now button
Technique creation
Recommended solution: Technique Editor
Using the Technique Editor
Logs
Understanding how Technique Editor works
Directory layout
Technique Editor integration with Rudder
Hooks
Create Technique manually
Prerequisite
Define your objective
Initialize your new Technique
Define variables
First test in the Rudder interface
Implement the behavior
Read in the variables from Rudder
Add reporting
REST API
Default setup
Rudder Authentication
Apache access rules
User for REST actions
Status
Promises regeneration
Dynamic groups regeneration
Technique library reload
Archives manipulation
Archiving:
Listing:
Restoring a given archive:
Restoring the latest available archive (from a previously archived action, and so from a Git tag):
Restoring the latest available commit (use Git HEAD):
Downloading a ZIP archive
Relay servers
Installation procedure - On the relay
Install Rudder agent
Install the required dependencies and enable required modules
Create the necessary directory and adjust the permissions
Please create the appropriate file for your OS, and copy the following content in it
Installation procedure - On the root server
Set the node as a Rudder relay
Result
Adding nodes to a relay server
Multiserver Rudder
Preliminary steps
Install rudder-relay-top
Install rudder-db
Install rudder-ldap
Install rudder-web
Server migration
What files you need
Handle configuration files
Copy /var/rudder/configuration-repository
Use Archive feature of Rudder
Handle CFEngine keys
Keep your CFEngine keys
Change CFEngine keys
On your nodes
Mirroring Rudder repositories
Handbook
Database maintenance
Automatic PostgreSQL table maintenance
PostgreSQL database vacuum
LDAP database reindexing
Migration, backups and restores
Backup
Restore
Migration
Performance tuning
Reports retention
Apache HTTPd
Jetty
Java "Out Of Memory Error"
Configure RAM allocated to Jetty
Optimize PostgreSQL server
Suggested values on an high end server
Suggested values on a low end server
CFEngine
Rsyslog
Maximum number of file descriptors
Network backlog
Conntrack table
Troubleshooting and common issues
Some reports are in "No Answer"
If you get no reports at all for the Node
If you get incomplete reporting for the Node
Communication issues between agent and server
DNS issues
Inventory issues
Technique editing
Database is using too much space
Reference
Rudder Server data workflow
Rudder Agent workflow
Request data from Rudder Server
Launch processes
Identify Rudder Root Server
Inventory
Syslog
Apply Directives
Configuration files for a Node
Packages organization
Packages
Software dependencies and third party components
Configuration files for Rudder Server
Generic methods
Command
command_execution
command_execution_result
Directory
directory_check_exists
directory_create
File
file_check_FIFO_pipe
file_check_block_device
file_check_character_device
file_check_exists
file_check_hardlink
file_check_regular
file_check_socket
file_check_symlink
file_check_symlinkto
file_copy_from_local_source
file_copy_from_local_source_recursion
file_copy_from_remote_source
file_copy_from_remote_source_recursion
file_create
file_create_symlink
file_create_symlink_enforce
file_create_symlink_force
file_download
file_enforce_content
file_ensure_block_in_section
file_ensure_block_present
file_ensure_key_value
file_ensure_key_value_present_in_ini_section
file_ensure_keys_values
file_ensure_line_present_in_ini_section
file_ensure_line_present_in_xml_tag
file_ensure_lines_absent
file_ensure_lines_present
file_from_template
file_from_template_mustache
file_from_template_type
file_remove
file_replace_lines
file_template_expand
Group
group_absent
group_present
Http
http_request_check_status_headers
http_request_content_headers
Logger
logger_rudder
Package
package_check_installed
package_install
package_install_version
package_install_version_cmp
package_install_version_cmp_update
package_remove
package_verify
package_verify_version
Permissions
permissions
permissions_dirs
permissions_dirs_recurse
permissions_recurse
permissions_type_recursion
Schedule
schedule_simple
schedule_simple_catchup
schedule_simple_nodups
schedule_simple_stateless
Service
service_action
service_check_running
service_check_running_ps
service_check_started_at_boot
service_ensure_running
service_ensure_running_path
service_ensure_started_at_boot
service_ensure_stopped
service_reload
service_restart
service_restart_if
service_start
service_stop
User
user_absent
user_create
Variable
variable_dict
variable_dict_from_file
variable_iterator
variable_iterator_from_file
variable_string
variable_string_from_file
Appendix: Glossary
License