Help:Project hosted salt master

From Wikitech
Wikimedia Labs documentation
This is a documentation page for Wikimedia Labs. If you can improve it, please do that. You can also request help on #wikimedia-labs connect. For all documentation pages, please see the List of all documentation pages for labs. If you are seeking a help with a specific project, please contact the project owners.


This document describes how to host a salt master for a project.

Configure the instance as a salt master

  1. Add the role::salt::masters::labs::project_master class to the instance's puppet configuration
  2. Run puppet:
    • puppet agent --test --verbose
  3. Find the salt master's public fingerprint:
    • salt-key --finger-all
  4. Add the pub fingerprint to the salt_master_finger_override puppet option in the instance's configuration.
  5. Add the instance's FQDN to the salt_master_override puppet option in the instance's configuration.
  6. Remove the cached labs salt master key:
    • rm /etc/salt/pki/minion/minion_master.pub
  7. Run puppet:
    • puppet agent --test --verbose

Point other instances in the project to new master

For each instance:

  1. Add the master's pub fingerprint to the salt_master_finger_override puppet option in the instance's configuration.
  2. Add the master's FQDN to the salt_master_override puppet option in the instance's configuration.
  3. Remove the cached labs salt master key:
    • rm /etc/salt/pki/minion/minion_master.pub
  4. Run puppet:
    • puppet agent --test --verbose

Sign keys on the master

  1. salt-key --accept-all

See also

Retrieved from "https://labtestwikitech.wikimedia.org/w/index.php?title=Help:Project_hosted_salt_master&oldid=8455"