Foreman: Katello

Yum Repositories einbinden(auf dem Katello- und allen Smart-Proxy-Servern)

yum -y localinstall http://yum.puppetlabs.com/puppetlabs-release-el-7.noarch.rpm
yum -y localinstall http://fedorapeople.org/groups/katello/releases/yum/3.4/katello/el7/x86_64/katello-repos-latest.rpm
yum -y localinstall https://yum.theforeman.org/releases/1.15/el7/x86_64/foreman-release.rpm
yum -y install centos-release-scl
yum -y install foreman-installer-katello

Auf dem Katello-Server

yum install puppet httpd
groupadd --gid 989 --force foreman
useradd --system --uid 992 --force --gid foreman --groups foreman,qpidd,puppet foreman
mkdir /etc/foreman
foreman-installer --scenario                     "katello"\
                  --foreman-proxy-dns            "false"\
                  --foreman-proxy-content-puppet "false"\
                  --foreman-proxy-puppetca       "false"

Ein Smart-Proxy für den Puppetmaster

Auf dem Katello-Server:

FOREMAN_PROXY_FQDN=foreman-proxy-puppet.kvm.think.lan
foreman-proxy-certs-generate --foreman-proxy-fqdn "$FOREMAN_PROXY_FQDN" --certs-tar "/root/${FOREMAN_PROXY_FQDN}-certs.tar"

Die Ausgabe speichern! - Die Daten werden im nächsten Schrittgebraucht.

Auf dem Smart-Proxy für:

Hier die Daten aus dem Schritt foreman-proxy-certs-generate... hier eintragen:

FOREMAN_KATELLO_FQDN=foreman-katello.kvm.think.lan
FOREMAN_OAUTH_KEY=PgaasraJGhJ6hhtvsCeHGUMZj3V9hhSG
FOREMAN_OAUTH_SECRET=q7ADjujbddYLEcpG9cAF8Pcz8tCYgWfv
PULP_OAUTH_SECRET=PF9934rMmjJkwmBrzAfgNDoC8tpxsufF
FOREMAN_PROXY_FQDN=foreman-proxy-puppet.kvm.think.lan

scp root@${FOREMAN_KATELLO_FQDN}:/root/${FOREMAN_PROXY_FQDN}-certs.tar /root/${FOREMAN_PROXY_FQDN}-certs.tar

yum -y localinstall http://yum.puppetlabs.com/puppetlabs-release-el-7.noarch.rpm
yum -y localinstall http://fedorapeople.org/groups/katello/releases/yum/3.4/katello/el7/x86_64/katello-repos-latest.rpm
yum -y localinstall https://yum.theforeman.org/releases/1.15/el7/x86_64/foreman-release.rpm
yum -y install centos-release-scl
yum -y install foreman-installer-katello
yum -y localinstall http://foreman-katello.kvm.think.lan/pub/katello-ca-consumer-latest.noarch.rpm

subscription-manager register --org "Default_Organization"

yum install puppet httpd
mkdir /etc/foreman
groupadd --gid 989 --force foreman
useradd --system --uid 992 --gid foreman --groups foreman,puppet foreman

foreman-installer --scenario                                "foreman-proxy-content"\
                  --foreman-proxy-content-parent-fqdn       "${FOREMAN_KATELLO_FQDN}"\
                  --foreman-proxy-register-in-foreman       "true"\
                  --foreman-proxy-foreman-base-url          "https://${FOREMAN_KATELLO_FQDN}"\
                  --foreman-proxy-trusted-hosts             "${FOREMAN_KATELLO_FQDN}"\
                  --foreman-proxy-trusted-hosts             "$(hostname -f)"\
                  --foreman-proxy-oauth-consumer-key        "${FOREMAN_OAUTH_KEY}"\
                  --foreman-proxy-oauth-consumer-secret     "${FOREMAN_OAUTH_SECRET}"\
                  --foreman-proxy-content-pulp-oauth-secret "${PULP_OAUTH_SECRET}"\
                  --foreman-proxy-content-certs-tar         "/root/${FOREMAN_PROXY_FQDN}-certs.tar"\
                  --puppet-server-foreman-url               "https://${FOREMAN_KATELLO_FQDN}"\
                  --foreman-proxy-content-puppet            "true"\
                  --foreman-proxy-puppetca                  "true"