book

Learning CFEngine 3

by Diego Zamboni

March 2012

Beginner to intermediate

249 pages

7h 27m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Who Is This Book For?Overview of the BookOnline ResourcesConventions Used in This BookUsing Code ExamplesSafari® Books OnlineHow to Contact UsContent UpdatesSeptember 2013 (third release)November 2012 (second release)Acknowledgments
How to Achieve AutomationHome-Grown ScriptsSpecialized Tools for AutomationWhy CFEngine?A Brief History of CFEngineVersions of CFEngine
Installing CFEngineWhich Version of CFEngine?Installing the Community Edition from SourceCompiling on LinuxCompiling on Mac OS XCompiling on Windows with cygwinInstalling the Community Edition from Binary PackagesInstalling the Commercial EditionFinishing the Installation and BootstrappingAuxiliary FilesYour First CFEngine PolicyIntegrating Your New Policy Into Periodic CFEngine Execution
Basic PrinciplesDesired-State ConfigurationBasic CFEngine OperationsPromise TheoryConvergent ConfigurationCFEngine ComponentsA First ExampleCFEngine Policy StructureData Types and Variables in CFEngineVariable declarationsStringsNumbersListsArraysClasses and Decision MakingBundles, Bodies, and NamespacesBundlesBodiesNamespacesNormal OrderingLooping in CFEngineThinking in CFEngineClients and ServersCFEngine Server ConfigurationUpdating Client Files from the ServerCFEngine Remote Execution Using cf-runagentCFEngine Information ResourcesManuals and Official GuidesCFEngine Standard LibraryCFEngine Solutions GuideCFEngine Design CenterCommunity Forum and IRC channelCFEngine Bug TrackerOther Community ResourcesRecommended Reading Order
Initial System ConfigurationRunning These PoliciesEditing /etc/sysctl.confEditing /etc/sshd_configEditing /etc/inittabConfiguration Files with Variable ContentClass-based configurationSystem-state-based configurationUser ManagementSoftware InstallationPackage-Based Software ManagementManual Software ManagementUsing CFEngine for SecurityPolicy EnforcementTemplate-based login bannersPassword expiration periodsSecurity ScanningAdditional CFEngine Features and Information
Getting Started with the Design CenterInstalling cf-sketchExploring cf-sketchExploring Existing SketchesPeeking Under the HoodContributing to the Design CenterLearning More About the Design Center
Hierarchical CopyingPassing Name-Value Pairs to BundlesSetting Default Values for Bundle ParametersUsing Classes as Configuration MechanismsGeneric Tasks Using Lists and Array IndicesDefining Classes for Groups of HostsControlling Promise Execution OrderDynamic Loading and ExecutionPer-File InputsDynamic bundle execution control
Setting Up Multiple CFEngine EnvironmentsUsing a Version-Control System to Separate EnvironmentsFlow of Development and DeploymentCFEngine TestingBehavioral Testing for CFEngine PoliciesUnit Testing for CFEngine PoliciesUsing Vagrant with CFEngineService Management Using CFEngineBasic Concepts of Service Management with CFEngineDefining Your Own Service Management MechanismsWhere to from Here?
Setting UpUsing the cfengine ModeCustomizing Indentation in cfengine-mode

Setting UpGetting HelpUsing the PluginHacking the vim_cf3 PluginAbbreviationsMapsInstalling vim_cf3 Using CFEngine
Attributes of Promises Common to All CFEngine ComponentsAttributes of “classes” PromisesAttributes of “defaults” PromisesAttributes of “meta” PromisesAttributes of “reports” PromisesAttributes of “vars” PromisesAttributes that Can Be Used in Any PromiseAttributes of Promises Specific to the AgentAttributes of “commands” PromisesAttributes of “databases” PromisesAttributes of “guest_environments” PromisesAttributes of “files” PromisesAttributes of Promises in edit_line BundlesAttributes of Any Promises in edit_line BundlesAttributes of “delete_lines” promises in edit_line bundlesAttributes of “insert_lines” Promises in edit_line BundlesAttributes of “field_edits” Promises in edit_line BundlesAttributes of “replace_patterns” Promises in edit_line BundlesAttributes of Promises in edit_xml BundlesAttributes of any promises in edit_xml bundlesAttributes of “build_xpath” Promises in edit_xml BundlesAttributes of “delete_tree” Promises in edit_xml BundlesAttributes of “insert_tree” Promises in edit_xml BundlesAttributes of “delete_attribute” Promises in edit_xml BundlesAttributes of “set_attribute” Promises in edit_xml BundlesAttributes of “delete_text” Promises in edit_xml BundlesAttributes of “set_text” Promises in edit_xml BundlesAttributes of “insert_text” Promises in edit_xml BundlesAttributes of “methods” PromisesAttributes of “packages” PromisesAttributes of “processes” PromisesAttributes of “services” PromisesAttributes of “storage” PromisesControlCommon ControlAgent ControlFile Control

Overview

Get up to speed on CFEngine 3, the open source configuration management software that enables you to automate everything from one-server shops to enterprise computer networks. This hands-on introduction shows you how to use CFEngine 3 to implement and manage and your IT infrastructure in a sustainable, scalable, and efficient manner.

Through numerous examples, you’ll learn how to use CFEngine to perform tasks such as user management, software installation, and security. You’ll also learn how to focus on higher-level issues of design, implementation and maintenance, knowing that CFEngine is handling the lower-level details for you automatically.

Discover how far you can go with system automation, using CFEngine
Become familiar with the software’s principles, components, and policy structure
Configure CFEngine step-by-step to perform routine tasks on your system
Specify custom machine configuration without making changes by hand
Get tricks and patterns that you can use in your own CFEngine policies
Maintain separate CFEngine environments for development, testing, production, or other uses