Skip to content

Latest commit

 

History

History
116 lines (93 loc) · 3.38 KB

salt.md

File metadata and controls

116 lines (93 loc) · 3.38 KB
Raw

This section introduces methods to configure a virtual machine instance using Salt SSH from SaltStack as configuration management:

https://docs.saltstack.com/en/latest/topics/ssh/

Make sure to install salt-ssh on your host:

http://repo.saltstack.com/

# latest Salt on Debian 9
echo 'deb http://repo.saltstack.com/apt/debian/9/amd64/latest stretch main' > /etc/apt/sources.list.d/saltstack.list
wget -O - https://repo.saltstack.com/apt/debian/9/amd64/latest/SALTSTACK-GPG-KEY.pub | apt-key add -
apt update && apt install salt-ssh

Usage

The ↴ salt-instance program writes all environment file used to initialize the connection to a virtual machine instance:

# create a new virtual machine instance
>>> vm s centos7 lxdev02
Domain lxdev02.devops.test definition file /srv/projects/vm-tools/vm/instances/lxdev02.devops.test/libvirt_instance.xml
SSH configuration: /srv/projects/vm-tools/vm/instances/lxdev02.devops.test/ssh_config
Domain lxdev02.devops.test defined from /srv/projects/vm-tools/vm/instances/lxdev02.devops.test/libvirt_instance.xml
Domain lxdev02.devops.test started
# change into the directory of the virtual machine instance
>>> vm cd lxdev02.devops.test
# initialize the Salt SSH environment
>>> salt-instance              
/srv/projects/vm-tools/vm/instances/lxdev02.devops.test/Saltfile written.
/srv/projects/vm-tools/vm/instances/lxdev02.devops.test/salt/master written.
/srv/projects/vm-tools/vm/instances/lxdev02.devops.test/salt/roster written.
# run Salt SSH
>>> salt-ssh --no-host-keys instance cmd.run hostname
instance:
    lxdev02

The Salt configuration files will be added to the virtual machine instance directory:

>>> tree                                      
.
├── disk.img
├── keys
│   ├── id_rsa
│   └── id_rsa.pub
├── libvirt_instance.xml
├── salt
│   ├── master
│   └── roster
├── Saltfile
├── salt.log
└── ssh_config

Configuration

Saltfile - Configuration of the salt-ssh command

https://docs.saltstack.com/en/latest/topics/ssh/index.html#define-cli-options-with-saltfile

salt/roster - Connection configuration for the virtual machine instance:

https://docs.saltstack.com/en/latest/topics/ssh/roster.html#ssh-roster

salt/master - salt-ssh reads a couple of configuration items from the Salt master configuration

https://docs.saltstack.com/en/latest/ref/configuration/master.html#configuration-salt-master

>>> tail -n+1 Saltfile salt/master salt/roster
==> Saltfile <==
salt-ssh:
  roster_file: ./salt/roster
  config_dir: ./salt
  ssh_log_file: ./salt.log
  ssh_max_procs: 10
  ssh_wipe: True
  ssh_rand_thin_dir: True
  ssh_sudo: True
  ssh_tty: True

==> salt/master <==
cachedir: /tmp/salt
pki_dir: /tmp/salt
root_dir: .
file_roots:
  base:
    - srv/salt
pillar_roots:
  base:
    - srv/pillar

==> salt/roster <==
instance:
  host: 10.1.1.31
  user: root
  priv: /srv/projects/vm-tools/vm/instances/lxdev02.devops.test/keys/id_rsa

States

Example SLS configuration can be found in following repository

https://github.com/vpenso/saltstack-example

# linke state configuration to the `file_roots:base` in the VM instance directory
ln -s ~/projects/saltstack-example/srv/salt/ srv/salt
# apply a state from the examples repository
salt-ssh --no-host-keys instance state.apply docker/docker-ce