Difference between revisions of "SUSE Manager/SaltSSHServerPush"

From MicroFocusInternationalWiki
Jump to: navigation, search
(SSH Server Push via salt-ssh)
(wording cleanup)
Line 1: Line 1:
 
[[SUSE_Manager|SUSE Manager Main Page]]
 
[[SUSE_Manager|SUSE Manager Main Page]]
= SSH Server Push via salt-ssh =
+
= Push via Salt SSH =
  
  '''Note:''' This page is not related to the SSH Server Push for the traditional clients. For this, visit this page  [[SUSE_Manager/SSHServerPush]].
+
  '''Note:''' This page is not related to the Push via SSH for the traditional clients. For Push via SSH, visit [[SUSE_Manager/SSHServerPush]].
  
 
  '''Note:''' This feature is still work-in-progress and this page reflects the current state of it.
 
  '''Note:''' This feature is still work-in-progress and this page reflects the current state of it.
  
Saltstack provides a mechanism, called *salt-ssh* [https://docs.saltstack.com/en/latest/topics/ssh/] to manage clients from a server, without installing salt-related software on clients. No need to have minions connected to salt-master in this case. In other words, the goal of the feature is to provide similar functionality as the traditional SSH Server Push feature mentioned above.
+
Salt provides the *Salt SSH* feature [https://docs.saltstack.com/en/latest/topics/ssh/] to manage clients from a server.  It works without installing salt related software on clients. Using Salt SSH there is no need to have minions connected to salt-master. In other words, the goal of the feature is to provide similar functionality as the traditional Push via SSH feature mentioned above.
  
 
This feature allows:
 
This feature allows:
* managing salt-entitled systems with the "push via SSH" contact method using salt-ssh. '''This is only partially supported at this moment (we only support registering a basic system profile, almost no actions can be done on such system).'''
+
* managing Salt entitled systems with the Push via SSH contact method using Salt SSH. '''This is only partially supported at the moment (we only support registering a basic system profile, almost no actions can be done on such a system).'''
 
* bootstrapping such systems.
 
* bootstrapping such systems.
  
To bootstrap a salt-ssh system, go to the "Bootstrapping" page in the Web UI (Salt -> Bootstrapping), fill the required fields in and check "Manage system completely via SSH" field and click the "Bootstrap" button. After this the system will be bootstrapped and registered in the SUSE Manager and will appear under the System list.
+
To bootstrap a Salt SSH system, go to the "Bootstrapping" page in the Web UI (Salt -> Bootstrapping). Fill out the required fields, check the "Manage system completely via SSH" option, and confirm with clicking the "Bootstrap" button. After this the system will be bootstrapped and registered in the SUSE Manager and will appear in the "Systems" list.
  
 
[[File:Ss ssh push.png]]
 
[[File:Ss ssh push.png]]
  
 
  '''Note:''' This checkbox is hidden from the Web UI in the current code.
 
  '''Note:''' This checkbox is hidden from the Web UI in the current code.
 +
 
== Configuration ==
 
== Configuration ==
There are 2 kinds of parameters for salt-ssh:
+
 
* Bootstrap-time parameters - these are configured in the bootstrap UI
+
There are 2 kinds of parameters for Salt SSH:
 +
* Bootstrap-time parameters - these are configured in the Bootstrapping page
 
** Host
 
** Host
 
** Activation keys
 
** Activation keys
Line 30: Line 32:
 
* python must be installed on the remote system (python must be supported by the installed salt). Currently: python 2.6.  
 
* python must be installed on the remote system (python must be supported by the installed salt). Currently: python 2.6.  
  
  '''Note''': Old RHEL/CentOS versions (<= 5) are not supported since they do not contain python 2.6 by default.
+
'''Note:''' Old RHEL/CentOS versions (<= 5) are not supported because they do not have python 2.6 by default.

Revision as of 13:15, 29 November 2016

SUSE Manager Main Page

Push via Salt SSH

Note: This page is not related to the Push via SSH for the traditional clients. For Push via SSH, visit SUSE_Manager/SSHServerPush.
Note: This feature is still work-in-progress and this page reflects the current state of it.

Salt provides the *Salt SSH* feature [1] to manage clients from a server. It works without installing salt related software on clients. Using Salt SSH there is no need to have minions connected to salt-master. In other words, the goal of the feature is to provide similar functionality as the traditional Push via SSH feature mentioned above.

This feature allows:

  • managing Salt entitled systems with the Push via SSH contact method using Salt SSH. This is only partially supported at the moment (we only support registering a basic system profile, almost no actions can be done on such a system).
  • bootstrapping such systems.

To bootstrap a Salt SSH system, go to the "Bootstrapping" page in the Web UI (Salt -> Bootstrapping). Fill out the required fields, check the "Manage system completely via SSH" option, and confirm with clicking the "Bootstrap" button. After this the system will be bootstrapped and registered in the SUSE Manager and will appear in the "Systems" list.

Ss ssh push.png

Note: This checkbox is hidden from the Web UI in the current code.

Configuration

There are 2 kinds of parameters for Salt SSH:

  • Bootstrap-time parameters - these are configured in the Bootstrapping page
    • Host
    • Activation keys
    • Password (used only for bootstrapping, not to be saved anywhere, all future ssh sessions are authorized via a key/cert pair)
  • Persistent parameters - these are configured SUMA-wide:

Requirements

  • ssh daemon must be running on the remote system and reachable by the *salt-api* daemon (typically running on the SUSE Manager server)
  • python must be installed on the remote system (python must be supported by the installed salt). Currently: python 2.6.
Note: Old RHEL/CentOS versions (<= 5) are not supported because they do not have python 2.6 by default.