SlideShare a Scribd company logo

Configuration management: automating and rationalizing server setup with CFEngine 3 (Open World Forum 2011)

Jonathan Clarke, profile picture
Jonathan Clarke

This document discusses configuration management and CFEngine 3. It begins with an introduction to configuration management principles like reproducibility, industrialization, and automation. It then discusses the main configuration management tools including CFEngine 3, Puppet, and Chef. The document focuses on CFEngine 3, describing its features like being lightweight, scalable, and adapted to heterogeneous environments. It concludes with instructions on installing and getting started with CFEngine 3, including examples of using it to install and configure servers.

Technology
Related topics:
Cloud Computing Insights
1 of 35
Downloaded 16 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
24/09/2011 Configuration Management Automating and rationalizing server setup with CFEngine 3 Jonathan Clarke <jcl@normation.com>    
About the speaker Jonathan Clarke → CTO → Sysadmin background Startup created in 2010 Infrastructure management Based in Paris FLOSS contributor: Configuration management: CFEngine  CFEngine (partner) Others (OpenLDAP, LSC, FusionInventory...)  Rudder (creator)    
Introduction 1. CREATE 2. SETUP 3. USE 4. THROW AWAY Cloud Computing    
Introduction 1. CREATE 2. SETUP 3. USE 4. THROW AWAY Cloud Computing → APIs and tools are available    
Introduction 1. CREATE 2. SETUP 3. USE 4. THROW AWAY Cloud Computing Three approaches: 1. Manually 2. Imaging 3. Configuration tool    
Agenda 1) Configuration Management principles 2) Configuration Management tools 3) About CFEngine 3 4) Getting started    
Configuration Management Principles through examples...    
A server crashed. Install a new one, people can't work without it! OK, it'll be done in about two days... Why configuration management? There's a new critical security patch we must deploy on all our servers! Get it out quickly! Right, I'll put the whole team on it.    
Reproducibility Industrialization Automation Why configuration management?    
How do we setup service X? Ask Jim, he's the expert on that. But he left the company... Why configuration management? Huh, this server has been logging errors for a few weeks. Oh? I think Michael changed something on it recently... He'll tell you what it was. Damn, he's on vacation!    
Documentation History Building-up knowledge Why configuration management?    
An intruder just stole our data using a vulnerability in a module we don't need... I thought the project specification ensured that we disabled that? Er, it did, but we enabled it to solve a problem and forgot to disable it afterwards... sorry... Why configuration management?    
Why configuration management? Continuous vigilance Automatic repairs Alerts    
I don't understand how this server is setup. It doesn't match our best-practices. Oh, that's a legacy server... Why configuration management? Give me details on our current security policy. Well, it's a collection of little things, here and there... Ah... Well, OK. Tell me: is it fully applied on all our critical servers? Er...    
Why configuration management? Rationalization Normalization Control    
Reproducibility Industrialization Documentation History Automation Building-up knowledge Configuration management benefits Continuous Rationalization vigilance Automatic repairs Alerts Normalization Control    
Configuration Management The tools    
Main tools available CFEngine 3 Puppet Chef    
Main tools available: history Relative origins of CFEngine, Puppet and Chef Source: http://verticalsysadmin.com/blog/uncategorized/relative-origins-o f-cfengine-chef-and-puppet    
The tools: similarities CFEngine 3 Puppet Chef Common origins Designed specifically Text-based / CLI for configuration interface management Client-server model (sometimes optional) Open Source    
The tools: some differences CFEngine 3 Puppet Chef C Ruby Ruby Language GPL Apache Apache (ex-GPL) License Yes Preliminary Partial Windows support    
A bit about CFEngine 3...    
CFEngine 3: Features Multi platform Windows support Two versions: 1. Community (open source) Runs in Cygwin 2. Nova (commercial) ● Native Windows service    
CFEngine 3: Features Multi-OS Multi-distribution Adapted to Make it ”transparent” (forget heterogeneous about the complexity) environments Existing standard library handling the differences between each OS and distribution    
CFEngine 3: Features Lightweight, non-intrusive Non-intrusive Daemon consumption on managed hosts Only two dependencies: - BerkeleyDB - OpenSSL    
CFEngine 3: Features Evolution of CPU utilization for an increasing number of managed hosts Highly scalable From 25 to 400 clients (x16) CPU utilization increases by 1.16% Notes: • Each host runs CFEngine every 5 minutes • Configuration tested sets up Apache web server • Tests and monitoring using AWS    
CFEngine 3: Features Multi platform Adapted to Lightweight, non-intrusive heterogeneous environments Autonomous Fault-tolerant Highly scalable Progressive roll-out    
Getting started with CFEngine 3    
CFEngine 3: Installing  Install from sources:  http://www.cfengine.com/source_code  Prebuilt packages:  Debian / SuSE / Fedora / RHEL / Ubuntu  Requires free signup  https://cfengine.com/inside/myspace    
CFEngine 3: Client-Server  Using a server is optional!  Get started by running standalone  CFEngine's server daemon is cf-serverd  Dedicated protocol: TCP port 5308  Requires SSL key exchange    
CFEngine 3: Configuration  Minimal configuration: body common control { bundlesequence => { "HelloWorld" }; } Syntax notes bundle agent HelloWorld Whitespace doesn't count { Comments follow # # This will output "Hello World!" commands: "/bin/echo Hello World!"; } Structure notes ● Structures are created using { } ● Structures are bundles or bodies    
CFEngine 3: Configuration  Promise types: Promise types Promise types (all versions) (commercial versions) files environments packages services processes databases commands storage interfaces (for future use) Special types Special types (all versions) (commercial versions) vars outputs classes methods reports    
CFEngine 3: Examples  Install and update the LAMP stack bundle agent lamp {   vars: "packages" slist => { "httpd", "php5", "mysql" };   packages:     "${packages}"       package_method => generic,       package_method => "addupdate"; }    
CFEngine 3: Examples  Install Apache with distribution variations packages: debian:: "apache2" package_policy => "add", package_method => apt; centos|redhat:: "httpd" package_policy => "add", package_method => yum;    
24/09/2011 Thanks for participating! Stay in touch... Jonathan Clarke Email: jcl@normation.com Twitter: jooooooon42    

More Related Content

PDF
Configuration management 101 - A tale of disaster recovery using CFEngine 3
RUDDER
 
ODP
Cfengine presentation at the RMLL
RUDDER
 
PDF
Nakajima numa-final
The Linux Foundation
 
PDF
XS Japan 2008 Ganeti English
The Linux Foundation
 
PDF
Ian Pratt Usenix 08 Keynote
The Linux Foundation
 
PDF
XS Boston 2008 Fault Tolerance
The Linux Foundation
 
PDF
Automatic systems installations and change management wit FAI - Talk for Netw...
Henning Sprang
 
PPSX
Cvc2009 Moscow Xen App5 Fp1 Fabian Kienle Final
Liudmila Li
 
Configuration management 101 - A tale of disaster recovery using CFEngine 3
RUDDER
 
Cfengine presentation at the RMLL
RUDDER
 
Nakajima numa-final
The Linux Foundation
 
XS Japan 2008 Ganeti English
The Linux Foundation
 
Ian Pratt Usenix 08 Keynote
The Linux Foundation
 
XS Boston 2008 Fault Tolerance
The Linux Foundation
 
Automatic systems installations and change management wit FAI - Talk for Netw...
Henning Sprang
 
Cvc2009 Moscow Xen App5 Fp1 Fabian Kienle Final
Liudmila Li
 

What's hot (20)

PPTX
Acme Packet Provisioning Framework
Mislav Petričević
 
PDF
XS Oracle 2009 Vm Snapshots
The Linux Foundation
 
PDF
I/O Scalability in Xen
The Linux Foundation
 
PDF
Linux Foundation Collaboration Summit 13 :10 years of Xen and Beyond
The Linux Foundation
 
PDF
Nakajima hvm-be final
The Linux Foundation
 
PDF
TSM 6.4 Technical updates
Solv AS
 
PDF
Automated installations and infrastructure management with FAI
Henning Sprang
 
PPTX
Performance Profiling of Virtual Machines
Jiaqing Du
 
PPTX
PCoIP and More - VMware View - Performance and Best Practices
VMwarePR
 
PDF
Cloud infrastructure licensing_v2
mikhail.mikheev
 
PDF
Big ip-ltm-asm-dg
wardell henley
 
PDF
Linux Desktop Automation
Rui Lapa
 
PPTX
Keynote Speech: Xen ARM Virtualization
The Linux Foundation
 
PPTX
It camp veeam presentation (no videos)
Harold Wong
 
PPTX
Realtime scheduling for virtual machines in SKT
The Linux Foundation
 
PPTX
Performance Profiling in a Virtualized Environment
Jiaqing Du
 
PDF
XS Boston 2008 Project Status
The Linux Foundation
 
PPTX
Single Console for viewing OpManager & DeviceExpert Alarms
ManageEngine, Zoho Corporation
 
PDF
XS Oracle 2009 Intro Slides
The Linux Foundation
 
PDF
XS Boston 2008 Self IO Emulation
The Linux Foundation
 
Acme Packet Provisioning Framework
Mislav Petričević
 
XS Oracle 2009 Vm Snapshots
The Linux Foundation
 
I/O Scalability in Xen
The Linux Foundation
 
Linux Foundation Collaboration Summit 13 :10 years of Xen and Beyond
The Linux Foundation
 
Nakajima hvm-be final
The Linux Foundation
 
TSM 6.4 Technical updates
Solv AS
 
Automated installations and infrastructure management with FAI
Henning Sprang
 
Performance Profiling of Virtual Machines
Jiaqing Du
 
PCoIP and More - VMware View - Performance and Best Practices
VMwarePR
 
Cloud infrastructure licensing_v2
mikhail.mikheev
 
Big ip-ltm-asm-dg
wardell henley
 
Linux Desktop Automation
Rui Lapa
 
Keynote Speech: Xen ARM Virtualization
The Linux Foundation
 
It camp veeam presentation (no videos)
Harold Wong
 
Realtime scheduling for virtual machines in SKT
The Linux Foundation
 
Performance Profiling in a Virtualized Environment
Jiaqing Du
 
XS Boston 2008 Project Status
The Linux Foundation
 
Single Console for viewing OpManager & DeviceExpert Alarms
ManageEngine, Zoho Corporation
 
XS Oracle 2009 Intro Slides
The Linux Foundation
 
XS Boston 2008 Self IO Emulation
The Linux Foundation
 
Ad

Viewers also liked (11)

PPSX
Salaat
firofame
 
PDF
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
Jonathan Clarke
 
PDF
Fall in Love with Russia, CCS Webinar Presentation
Cross-Cultural Solutions
 
ODP
LSC - Synchronizing identities @ Loadays 2010
Jonathan Clarke
 
PDF
QL-IjmFT6Ub
Rene Larson
 
PDF
Volunteer Abroad in India - 16 Years and Counting
Cross-Cultural Solutions
 
PPT
Volunteer in Russica: Learn From CCS Alumni - CCS Webinar Presentation
Cross-Cultural Solutions
 
PDF
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Jonathan Clarke
 
PPT
Why Volunteer Abroad? A Look at FAQs - CCS Webinar Presentation
Cross-Cultural Solutions
 
PDF
Rudder 3.0 and beyond
Jonathan Clarke
 
PPTX
ZNetLive- A Quick Overview
ZNetLive
 
Salaat
firofame
 
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
Jonathan Clarke
 
Fall in Love with Russia, CCS Webinar Presentation
Cross-Cultural Solutions
 
LSC - Synchronizing identities @ Loadays 2010
Jonathan Clarke
 
QL-IjmFT6Ub
Rene Larson
 
Volunteer Abroad in India - 16 Years and Counting
Cross-Cultural Solutions
 
Volunteer in Russica: Learn From CCS Alumni - CCS Webinar Presentation
Cross-Cultural Solutions
 
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Jonathan Clarke
 
Why Volunteer Abroad? A Look at FAQs - CCS Webinar Presentation
Cross-Cultural Solutions
 
Rudder 3.0 and beyond
Jonathan Clarke
 
ZNetLive- A Quick Overview
ZNetLive
 
Ad

Similar to Configuration management: automating and rationalizing server setup with CFEngine 3 (Open World Forum 2011) (20)

PDF
Getting started with Puppet
jeyg
 
PDF
Rudder - Configuration management benefits for everyone (FOSDEM 2012)
RUDDER
 
PDF
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
RUDDER
 
PDF
Configuration management benefits for everyone - Rudder @ FLOSSUK Spring Conf...
RUDDER
 
PPTX
Cloud Application Security: Lessons Learned
Jason Chan
 
PPTX
Continuous Delivery in the Cloud
Fabio Lessa
 
PPTX
Continuous Delivery in the AWS Cloud
Nigel Fernandes
 
PPTX
Infrastructure Automation with Chef & Ansible
wajrcs
 
PPT
IBM PureFlex System Live Demo Outline: A scenario
IBM India Smarter Computing
 
PDF
Newvem Community - Cloud Management
Andreas Chatzakis
 
PDF
Cloud Management
Andreas Chatzakis
 
PPTX
Virtualization 101: Everything You Need To Know To Get Started With VMware
Datapath Consulting
 
PDF
Ansible, MongoDB Ops Manager and AWS v1.1
Michael Lynn
 
PPTX
Cloud Application Security: Lessons Learned
Jason Chan
 
ODP
Mcollective introduction
Javier Turégano Molina
 
PPTX
LAST Conference - Dev-Ops and Continuous Delivery
Nigel Fernandes
 
PDF
Introducing CQ 5.1
David Nuescheler
 
PPT
Joanna Rutkowska Subverting Vista Kernel
guestf1a032
 
PPTX
DevOps, A brief introduction to Vagrant & Ansible
Arnaud LEMAIRE
 
PDF
Handout2o
Shahbaz Sidhu
 
Getting started with Puppet
jeyg
 
Rudder - Configuration management benefits for everyone (FOSDEM 2012)
RUDDER
 
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
RUDDER
 
Configuration management benefits for everyone - Rudder @ FLOSSUK Spring Conf...
RUDDER
 
Cloud Application Security: Lessons Learned
Jason Chan
 
Continuous Delivery in the Cloud
Fabio Lessa
 
Continuous Delivery in the AWS Cloud
Nigel Fernandes
 
Infrastructure Automation with Chef & Ansible
wajrcs
 
IBM PureFlex System Live Demo Outline: A scenario
IBM India Smarter Computing
 
Newvem Community - Cloud Management
Andreas Chatzakis
 
Cloud Management
Andreas Chatzakis
 
Virtualization 101: Everything You Need To Know To Get Started With VMware
Datapath Consulting
 
Ansible, MongoDB Ops Manager and AWS v1.1
Michael Lynn
 
Cloud Application Security: Lessons Learned
Jason Chan
 
Mcollective introduction
Javier Turégano Molina
 
LAST Conference - Dev-Ops and Continuous Delivery
Nigel Fernandes
 
Introducing CQ 5.1
David Nuescheler
 
Joanna Rutkowska Subverting Vista Kernel
guestf1a032
 
DevOps, A brief introduction to Vagrant & Ansible
Arnaud LEMAIRE
 
Handout2o
Shahbaz Sidhu
 

More from Jonathan Clarke (6)

PDF
Interfacing infrastructure-as-code with non-expert users
Jonathan Clarke
 
PDF
What is new in CFEngine 3.6
Jonathan Clarke
 
PDF
Automating security policies (compliance) with Rudder
Jonathan Clarke
 
PDF
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
Jonathan Clarke
 
PDF
LDAP Synchronization Connector presentation at LDAPCon 2009
Jonathan Clarke
 
ODP
LDAP Synchronization Connector (LSC)
Jonathan Clarke
 
Interfacing infrastructure-as-code with non-expert users
Jonathan Clarke
 
What is new in CFEngine 3.6
Jonathan Clarke
 
Automating security policies (compliance) with Rudder
Jonathan Clarke
 
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
Jonathan Clarke
 
LDAP Synchronization Connector presentation at LDAPCon 2009
Jonathan Clarke
 
LDAP Synchronization Connector (LSC)
Jonathan Clarke
 

Recently uploaded (20)

PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
KodekX | Application Modernization Development
KodekX
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Approach and Philosophy of On baking technology
30anthuong17
 
KodekX | Application Modernization Development
KodekX
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Encapsulation theory and applications.pdf
gurumoop
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 

Configuration management: automating and rationalizing server setup with CFEngine 3 (Open World Forum 2011)

  • 1. 24/09/2011 Configuration Management Automating and rationalizing server setup with CFEngine 3 Jonathan Clarke <jcl@normation.com>    
  • 2. About the speaker Jonathan Clarke → CTO → Sysadmin background Startup created in 2010 Infrastructure management Based in Paris FLOSS contributor: Configuration management: CFEngine  CFEngine (partner) Others (OpenLDAP, LSC, FusionInventory...)  Rudder (creator)    
  • 3. Introduction 1. CREATE 2. SETUP 3. USE 4. THROW AWAY Cloud Computing    
  • 4. Introduction 1. CREATE 2. SETUP 3. USE 4. THROW AWAY Cloud Computing → APIs and tools are available    
  • 5. Introduction 1. CREATE 2. SETUP 3. USE 4. THROW AWAY Cloud Computing Three approaches: 1. Manually 2. Imaging 3. Configuration tool    
  • 6. Agenda 1) Configuration Management principles 2) Configuration Management tools 3) About CFEngine 3 4) Getting started    
  • 7. Configuration Management Principles through examples...    
  • 8. A server crashed. Install a new one, people can't work without it! OK, it'll be done in about two days... Why configuration management? There's a new critical security patch we must deploy on all our servers! Get it out quickly! Right, I'll put the whole team on it.    
  • 9. Reproducibility Industrialization Automation Why configuration management?    
  • 10. How do we setup service X? Ask Jim, he's the expert on that. But he left the company... Why configuration management? Huh, this server has been logging errors for a few weeks. Oh? I think Michael changed something on it recently... He'll tell you what it was. Damn, he's on vacation!    
  • 11. Documentation History Building-up knowledge Why configuration management?    
  • 12. An intruder just stole our data using a vulnerability in a module we don't need... I thought the project specification ensured that we disabled that? Er, it did, but we enabled it to solve a problem and forgot to disable it afterwards... sorry... Why configuration management?    
  • 13. Why configuration management? Continuous vigilance Automatic repairs Alerts    
  • 14. I don't understand how this server is setup. It doesn't match our best-practices. Oh, that's a legacy server... Why configuration management? Give me details on our current security policy. Well, it's a collection of little things, here and there... Ah... Well, OK. Tell me: is it fully applied on all our critical servers? Er...    
  • 15. Why configuration management? Rationalization Normalization Control    
  • 16. Reproducibility Industrialization Documentation History Automation Building-up knowledge Configuration management benefits Continuous Rationalization vigilance Automatic repairs Alerts Normalization Control    
  • 17. Configuration Management The tools    
  • 18. Main tools available CFEngine 3 Puppet Chef    
  • 19. Main tools available: history Relative origins of CFEngine, Puppet and Chef Source: http://verticalsysadmin.com/blog/uncategorized/relative-origins-o f-cfengine-chef-and-puppet    
  • 20. The tools: similarities CFEngine 3 Puppet Chef Common origins Designed specifically Text-based / CLI for configuration interface management Client-server model (sometimes optional) Open Source    
  • 21. The tools: some differences CFEngine 3 Puppet Chef C Ruby Ruby Language GPL Apache Apache (ex-GPL) License Yes Preliminary Partial Windows support    
  • 22. A bit about CFEngine 3...    
  • 23. CFEngine 3: Features Multi platform Windows support Two versions: 1. Community (open source) Runs in Cygwin 2. Nova (commercial) ● Native Windows service    
  • 24. CFEngine 3: Features Multi-OS Multi-distribution Adapted to Make it ”transparent” (forget heterogeneous about the complexity) environments Existing standard library handling the differences between each OS and distribution    
  • 25. CFEngine 3: Features Lightweight, non-intrusive Non-intrusive Daemon consumption on managed hosts Only two dependencies: - BerkeleyDB - OpenSSL    
  • 26. CFEngine 3: Features Evolution of CPU utilization for an increasing number of managed hosts Highly scalable From 25 to 400 clients (x16) CPU utilization increases by 1.16% Notes: • Each host runs CFEngine every 5 minutes • Configuration tested sets up Apache web server • Tests and monitoring using AWS    
  • 27. CFEngine 3: Features Multi platform Adapted to Lightweight, non-intrusive heterogeneous environments Autonomous Fault-tolerant Highly scalable Progressive roll-out    
  • 28. Getting started with CFEngine 3    
  • 29. CFEngine 3: Installing  Install from sources:  http://www.cfengine.com/source_code  Prebuilt packages:  Debian / SuSE / Fedora / RHEL / Ubuntu  Requires free signup  https://cfengine.com/inside/myspace    
  • 30. CFEngine 3: Client-Server  Using a server is optional!  Get started by running standalone  CFEngine's server daemon is cf-serverd  Dedicated protocol: TCP port 5308  Requires SSL key exchange    
  • 31. CFEngine 3: Configuration  Minimal configuration: body common control { bundlesequence => { "HelloWorld" }; } Syntax notes bundle agent HelloWorld Whitespace doesn't count { Comments follow # # This will output "Hello World!" commands: "/bin/echo Hello World!"; } Structure notes ● Structures are created using { } ● Structures are bundles or bodies    
  • 32. CFEngine 3: Configuration  Promise types: Promise types Promise types (all versions) (commercial versions) files environments packages services processes databases commands storage interfaces (for future use) Special types Special types (all versions) (commercial versions) vars outputs classes methods reports    
  • 33. CFEngine 3: Examples  Install and update the LAMP stack bundle agent lamp {   vars: "packages" slist => { "httpd", "php5", "mysql" };   packages:     "${packages}"       package_method => generic,       package_method => "addupdate"; }    
  • 34. CFEngine 3: Examples  Install Apache with distribution variations packages: debian:: "apache2" package_policy => "add", package_method => apt; centos|redhat:: "httpd" package_policy => "add", package_method => yum;    
  • 35. 24/09/2011 Thanks for participating! Stay in touch... Jonathan Clarke Email: jcl@normation.com Twitter: jooooooon42