How can the little guys effectively learn and use Puppet? [closed]

I started using Puppet ahead of deploying a new infrastructure and simply bought a (well-regarded) book on the topic. I don’t think most people actually obtain professional Puppet training. I worked on examples until I could mold the process to my environment. This was December 2011, so within a few weeks, I was able to understand the basics and get a production framework in place. I wasn’t new to configuration management, having a CFEngine background, but many of your sysadmins’ concerns resonate. I made mistakes and had to refactor several times, but I did get things working satisfactorily.

A few notes on your points…

  • The traditional systems administration role is changing. Adapt or be left behind. I’ve been a successful systems engineer, but am having to retool as well (learning Python, for example). The focus on individual servers is diminished as hardware abstraction through virtualization and public and private cloud services gain traction. This means automation of systems tasks and the use of configuration management to wrest control of a larger number of servers. Add DevOps concepts to the mix, and you’ll see that the customer/end-user expectations and requirements are changing.

  • Puppet modules available online differ in style and structure and yes, I saw lots of overlap, redundancy and duplicated efforts. One developer I worked with said, “you could have developed your own tools in the time you spent looking online for something that works!” That gave me pause as I realized that Puppet seems to appeal more to developer types than admins looking for a best-practices or the right way approach.

  • Document heavily in order to get a feel for how things are connected. Given the shaky definitions and lack of a standard way of doing things, your configuration management structure really is unique to your environment. That transparency is going to have to be developed within.

  • I’d argue that it’s reasonably easy to duplicate a module to accommodate a new daemon or add a service to an existing manifest, depending on how you’ve organized your servers and roles.

  • I spent a lot of time testing on a single target before pushing changes to larger groups of servers. Running puppetd by hand on a representative server allowed me to debug changes and assess their impact. Maybe that’s a bit conservative, but it was necessary.

  • I’m not sure how much I’d depend on community modules. I did have to start using Augeas for some work, and lamented the fact that it was a functionality I took for granted in CFEngine.

In all, I feel like there isn’t a well-defined standard when it comes to Puppet. I had trouble figuring out how to organize directory structure on my Puppetmaster, understanding how to manage certificate signing, getting proper reverse DNS in place everywhere, getting Puppet to scale appropriately for the environment and understanding when to leverage community modules versus building my own. It’s a shift in thinking and I see how that would make a sysadmin panic. However, this was also solution built from scratch, so I had the luxury of evaluating tools. The decision to go this way was based on mindshare and the momentum behind Puppet. It was worth the effort to learn something new.

Remember, this site is a good resource, too.

Related Posts:

  1. Official definition of CSCI (Computer Software Configuration Item)
  2. Why use Chef/Puppet over shell scripts?
  3. Choosing between meaningful and meaningless hostnames [closed]
  4. Python Math – TypeError: ‘NoneType’ object is not subscriptable
  5. TCP vs UDP – What is a TCP connection? [duplicate]
  6. ssh : Permission denied (publickey,gssapi-with-mic)
  7. Error in “MLSD” command While Connecting FTP to Server [closed]
  8. Java default constructor
  9. How do I make a delay in Java?
  10. did you specify the right host or port? error on Kubernetes
  11. How does Java’s PriorityQueue differ from a min-heap?
  12. What is a Memory Heap?
  13. 403 Forbidden vs 401 Unauthorized HTTP responses
  14. Advanced AREL or just Rails Query for has_many through search by association
  15. “If not” condition statement in python
  16. How can I sort a dictionary by key?
  17. What does ERR_SPDY_PROTOCOL_ERROR mean in nginx?
  18. XPath contains(text(),’some string’) doesn’t work when used with node with more than one Text subnode
  19. Transport endpoint is not connected
  20. How to convert .crt to .pem [duplicate]
  21. pagebreak in markdown while creating pdf
  22. Time Complexity of Prims Algorithm?
  23. Ping – Request timed out
  24. How do I remove version tracking from a project cloned from git?
  25. How do I correctly clean up a Python object?
  26. How do I split a string on a delimiter in Bash?
  27. Why does Wi-Fi have so much more bandwidth than Bluetooth?
  28. What’s the difference between & and && in MATLAB?
  29. azure error 502 – Web server received an invalid response while acting as a gateway or proxy server
  30. What is a Ray ID (Cloudflare)?
  31. How do I get a list of built-in data sets in R?
  32. spring @sqlgroup with multiple datasource
  33. What is the definition of a “disparity map”?
  34. Alternative to ui-grid(doesn’t support angular2/4)
  35. Tool for drawing parse trees?
  36. Android java.lang.IllegalStateException: Could not execute method of the activity
  37. SwiftUI – How do I change the background color of a View?
  38. How to resolve the error java.net.SocketException: Too many open files
  39. Using map in Haskell
  40. R dates “origin” must be supplied
  41. How to one hot encode several categorical variables in R
  42. Downgrade npm to an older version
  43. Mongoose.js: remove collection or DB
  44. slideToggle JQuery right to left
  45. Valgrind Invalid free() / delete / delete[] / realloc() in C
  46. Exception in thread “main” java.lang.reflect.InvocationTargetException
  47. “webxml attribute is required” error in Maven
  48. How can I change the color of my prompt in zsh (different from normal text)?
  49. mkdir c++ function
  50. C’s printf and fprintf(stdout,) are not printing
  51. Letsencrypt renewal fails: Could not bind to IPv4 or IPv6.. Skipping
  52. Devise lockable – How to unlock account using unlock_in
  53. How to bind multiple values to a single WPF TextBlock?
  54. reversing list in Lisp
  55. How to disable Windows Update Medic Service?
  56. Systrace for Windows
  57. Good way to encapsulate Integer.parseInt()
  58. TCP/IP packets and datagrams
  59. ArrayList of int array in java
  60. What are the differences between Mustache.js and Handlebars.js?
  61. Vim Opening File E325 Attention Error
  62. Terminating app due to uncaught exception ‘NSUnknownKeyException’
  63. 2CHECKOUT ERROR CODE:PE102
  64. Android Debugging Failing With “Couldn’t connect to logcat, GetProcessId returned: 0” FFImageLoading.Platform.dll.so Not Found
  65. PHP – Indirect modification of overloaded property
  66. How to parse wordpress options json
  67. use wp_get_theme() to get theme author name
  68. Displaying a message when plug-in is deactivated
  69. get_previous_post in same categories
  70. Cannot understand WordPress error message
  71. Add column(s) to post edit page
  72. How to change the paginated posts link class?
  73. How use custom image size + ACF + background image
  74. Pass AJAX variable to PHP functions WordPress plugin
  75. Add query args if website open in mobile
  76. A little stumped – first WordPress theme
  77. Display shortcode based on user meta
  78. Woocommerce Image Categorie Page
  79. Hide image on homepage [closed]
  80. Any benefit or detriment from removing a pagefile on an 8 GB RAM machine?
  81. How do I view the details of a digital certificate .cer file?
  82. How do you validate fstab without rebooting?
  83. DNS – NSLOOKUP what is the meaning of the non-authoritative answer?
  84. Why can’t a CNAME record be used at the apex (aka root) of a domain?
  85. How can I upgrade to Java 1.8 on an Amazon Linux Server?
  86. What port should I open to allow remote desktop?
  87. Can you help me with my capacity planning?
  88. Cheat Sheets for System Administrators?
  89. Amazon EC2 terminology – AMI vs. EBS vs. Snapshot vs. Volume
  90. How to change an EC2 instance’s security group
  91. What type of DNS record is needed to make a subdomain?
  92. Multiple SSL domains on the same IP address and same port?
  93. Smell of rotten eggs in the server room
  94. Should we host our own nameservers?
  95. Ansible: Execute task only when a tag is specified
  96. Is a CNAME to CNAME chain allowed?
  97. How does a team of Systems Administrators share passwords securely?
  98. Apache2 config variable is not defined
  99. How dangerous is a wet server room floor
  100. Why is rsync skipping the main directory?

Leave a Comment