Help:Project hosted salt master

From Wikitech
Jump to navigation Jump to search


This document describes how to host a salt master for a project.

Configure the instance as a salt master

  1. Add the role::salt::masters::labs::project_master class to the instance's puppet configuration
  2. Run puppet:
    • puppet agent --test --verbose
  3. Find the salt master's public fingerprint:
    • salt-key --finger-all
  4. Add the pub fingerprint to the salt_master_finger_override puppet option in the instance's configuration.
  5. Add the instance's FQDN to the salt_master_override puppet option in the instance's configuration.
  6. Remove the cached labs salt master key:
    • rm /etc/salt/pki/minion/minion_master.pub
  7. Run puppet:
    • puppet agent --test --verbose

Point other instances in the project to new master

For each instance:

  1. Add the master's pub fingerprint to the salt_master_finger_override puppet option in the instance's configuration.
  2. Add the master's FQDN to the salt_master_override puppet option in the instance's configuration.
  3. Remove the cached labs salt master key:
    • rm /etc/salt/pki/minion/minion_master.pub
  4. Run puppet:
    • puppet agent --test --verbose

Sign keys on the master

  1. salt-key --accept-all

See also