Post Tagged with: "puppet"

Arbitrary Code via Puppet instead of Jamf (Pro)

Arbitrary Code via Puppet instead of Jamf (Pro)

If you are familiar with Jamf Pro’s (formerly the JSS/Casper Suite’s) model of smart groups and extension attributes (or EA’s), they provide a way to run code that can (among other things) inventory the state of a computer. Every recon run, they run the provided scripts configured server-side, and through […]

Read more

Stop Remediating While you Audit

Stop Remediating While you Audit

Let’s talk about orchestration. This term is different than just applying the normal set of configuration profiles you want near-permanently enforced on the workstations under your management. Too much theory isn’t necessarily helpful, but sometimes I come across something that feels right, and then experience validates it as a real, […]

Read more

Enhancing Sal with Facter and Profiles

In a previous post, I showed how to set up Sal. Sal‘s basic functionality is useful on its own, for the basic Munki reporting – what are the completed installs, pending updates, what OS versions, how many devices checked in the past 24 hours, etc. In this post, I’m going […]

Read more

Using Puppet with WebHelpDesk to Sign Certs, with Docker

In a previous post, I showed how to use Munki with Puppet SSL Client certificates in a Docker image. In that example, the Puppetmaster image is set to automatically sign all certificate requests. Good for testing, but not a good idea for production use. Instead, we should look into Puppet […]

Read more

Running Munki with Puppet SSL Client Certificates

Previously, I showed how you can run Munki in a Docker container. Then, I talked about how to build Munki to use Puppet for SSL certificates. Assuming you’ve got a running Puppetmaster image (which I talked about building here), let’s run the Munki-Puppet image we just built. Running the Container: […]

Read more

Building Munki with Puppet for SSL Client Certificates

Note: this is based on the README for the Munki-SSL docker container. In a previous post, we ran a Docker container serving Munki repo content via Nginx. That works fine, but only serves insecure HTTP content. It’s generally in everyone’s best interest to use a secure connection between the Munki […]

Read more

Building a Puppetmaster with Docker

This is based on the README I wrote for the macadmins/puppetmaster image. Puppet is an industrial-strength cross-platform configuration management engine. Though you’ll find lots of existing Puppetmaster images on the Docker registry, this one will serve as the baseline for other expanded uses of Puppet – such as using it […]

Read more

Episode Seven – Perfunctory Munki Mention

A vacation for your ears comes mid-winter as Pepijn Bruienne in thunderstorm-y Michigan returns to join Mac Admin (and new father) Derick Okihara in not-snowy Hawaii. Arek Dreyer and Ben Greisler get a shout-out each, DeployStudio goes down main street in a cab, and we even kick it old-school as […]

Read more

Episode One – How Far Back Do You Wanna Go?

For this installment we’re joined by Ed Marczak, with Graham Gilbert hosting. Topics range from hiring to presentations, with a little bit of working in open source at scale. Show links: http://www.macadminmonthly.org Managing Macs with Puppet – Graham Gilbert Computing by the Numbers – Ed Marczak https://munki.googlecode.com/ http://puppetlabs.com http://macsysadmin.se http://www.mactech.com/conference […]

Read more