opendev/system-config
Code Issues Proposed changes
7f9a9d30a6
system-config/launch
History
David Boucha e8862b1d1a Add functionality to create Salt keypairs 
Create Salt key pair if needed
Move Salt key pair creation above bootstrap_server
Pre-seed Salt Minion keys
Use fqdn instead of cert name.
Set the Minion ID to be the fqdn
Logic improvements in add_salt_keypair
Use proper splitext, some suggested fixes
Remove minion_id definition. Let fqdn define minion id

Change-Id: I74e5ffb1a414ee61f1214332be34b5ed0fd26e95
Reviewed-on: https://review.openstack.org/26046
Reviewed-by: James E. Blair <corvus@inaugust.com>
Reviewed-by: Nicolas Simonds <nic@metacloud.com>
Reviewed-by: Anita Kuno <anita.kuno@enovance.com>
Reviewed-by: Matthew Sherborne <msherborne+openstack@gmail.com>
Reviewed-by: Clark Boylan <clark.boylan@gmail.com>
Approved: Jeremy Stanley <fungi@yuggoth.org>
Reviewed-by: Jeremy Stanley <fungi@yuggoth.org>
Tested-by: Jenkins
2013-04-11 23:45:00 +00:00
..
dns.py Print DNS commands when launching a node. 2013-02-22 00:19:25 +00:00
launch-node.py Add functionality to create Salt keypairs 2013-04-11 23:45:00 +00:00
README Increase example Jenkins slave flavor. 2013-03-07 03:43:51 +00:00
sshclient.py Add a launch script. 2012-10-13 16:49:55 +00:00
utils.py Add functionality to create Salt keypairs 2013-04-11 23:45:00 +00:00

README 

Create Server
=============

Note that these instructions assume you're working from this
directory on an updated local clone of the repository, and that
your account is a member of the puppet group for access to the
puppet keys::

  sudo adduser YOURUSER puppet

(Remember to log out and back into your shell if you add yourself
to a group.)

To launch a node in the OpenStack CI account (production servers)::

  . ~root/ci-launch/openstackci-rs-nova.sh
  export FQDN=servername.openstack.org
  sudo puppet cert generate $FQDN
  ./launch-node.py $FQDN

To launch a node in the OpenStack Jenkins account (slave nodes)::

  . ~root/ci-launch/openstackjenkins-rs-nova.sh
  export FQDN=slavename.slave.openstack.org
  export CERT=slavetype.slave.openstack.org
  nova image-list
  export IMAGE='Ubuntu 12.10 (Quantal Quetzal)'
  nova flavor-list
  export RAM=8192
  sudo puppet cert generate $CERT
  ./launch-node.py $FQDN --cert $CERT.pem --image "$IMAGE" --ram $RAM

If you are launching a replacement server, you may skip the generate
step and specify the name of an existing puppet cert (as long as the
private key is on this host).

The server name and cert names may be different (as in the Jenkins
slave example), but launch-node.py will assume they are the same
unless specified.

Manually add the hostname to DNS (the launch script does not do so
automatically). Note that this example assumes you've already
exported a relevant FQDN and sourced the appropriate API credentials
above.

Add DNS Records
===============

There are no scripts to automatically handle DNS at the moment due to
a lack of library support for the new Rackspace Cloud DNS (with IPv6).
However, the launch-node script will print the commands needed to be
run to configure DNS for a newly launched server.  To see the commands
for an existing server, run:

  ./dns.py $FQDN

Activate Puppet Agent
=====================

If this is a Jenkins slave, Puppet configuration is applied through
an already installed cron job, so you can ignore this section. If
this is ''not'' a Jenkins slave, you'll want to log into it via SSH
and turn on the Puppet agent so it will start checking into the
master on its own::

  sudo sed -i 's/^START=.*/START=yes/' /etc/default/puppet
  sudo invoke-rc.d puppet start

You should be able to tell from the Puppet Dashboard when it begins
to check in, which normally happens at 10-minute intervals.