Skip to content

Instantly share code, notes, and snippets.

@anxiousmodernman

anxiousmodernman/config_mgmt.md

Created April 18, 2017 19:39
Show Gist options
  • Save anxiousmodernman/c9ebfcf1fd23c63f49762f88847259c1 to your computer and use it in GitHub Desktop.
Save anxiousmodernman/c9ebfcf1fd23c63f49762f88847259c1 to your computer and use it in GitHub Desktop.
Download ZIP
What does config management do?
Raw
config_mgmt.md

Jobs for Config Management

  • determine if a service is running (ask systemd)
  • install a service (drop .service files; tell systemd)
  • identify hosts (ask consul)
  • identify hosts by attribute (ask consul... is this an ubuntu host?)
  • deliver files to hosts; config or packages or binaries
    • scp-ish way (local to remote)
    • wget-ish way (download from known place)
    • git-ish way (clone a git repo)

Securing Config Management

We may be able to delegate to Vault policies for this.

  • Who can run commands
  • Who can run what specific commands
  • Who can run specific commands on specific hosts
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment