package (RPM) containing that certificate available on that RHN Server and include it during script
generation with the --ssl-cert option. Refer to Chapter 3, SSL Infrastructure for details.
Have the values ready to develop one or many bootstrap scripts, depending on the variety of
systems to be reconfigured. Since RHN Bootstrap provides a full set of reconfiguration options, you
may use it to generate different bootstrap scripts to accommodate each type of system. For instance,
bootstrap-web-servers.sh might be used to reconfigure your Web servers, while bootstrap-
app-servers.sh can handle the application servers. Consult Section 5.4, “RHN Boot strap
Options” for the complete list.
5.2. Generation
Now that all of the necessary components are in place, you may use RHN Boot strap to generate the
required scripts. Log into your RHN Satellite Server or RHN Proxy Server as root and issue the rhn-
bootstrap command followed by the desired options and values. If no options are included, a
bootstrap.sh file is created in the bootstrap/ subdirectory that contains the essential values
derived from the server, including hostname, the SSL certificate, it if exists, SSL and GPG settings, and a
call for the client-config-overrides.txt file.
At a minimum, Red Hat strongly recommends your scripts also accommodate activation keys, GPG keys,
and advanced configuration options in the following manner:
Use the --activation-keys option to include keys, taking into account the entitlement
requirements identified in Section 5.1, “Preparation”.
Use the --gpg-key option to identify the key path and filename during script generation. Otherwise,
use the --no-gpg option to turn off this verification on client systems. Red Hat recommends
retaining this security measure.
Include the --allow-config-actions flag to enable remote configuration management on all
client systems touched by the script. This feature is useful in reconfiguring multiple systems
simultaneously.
Include the --allow-rem ote-com mands flag to enable remote script use on all client systems.
Like configuration management, this feature aids in reconfiguring multiple systems.
When you're done, your command will look something like this:
rhn-bootstrap --activation-keys KEY1,KEY2 \
--gpg-key /var/www/html/pub/MY_CORPORATE_PUBLIC_KEY \
--allow-config-actions \
--allow-remote-comm ands
Obviously, include the actual key names. Refer to Section 5.4, “RHN Bootstrap Options” for the
complete list of options.
5.3. Script Use
Finally, when you're finished preparing the script for use, you are ready to run it. Log into the RHN
Satellite Server or RHN Proxy Server, navigate to the /var/www/htm l/pub/bootstrap/ directory and
run the following command, altering the hostname and name of the script as needed to suit the system
type:
cat bootstrap-EDITED-NAME.sh | ssh root@CLIENT_MACHINE1 /bin/bash
A less secure alternative is to use either wget or curl to retrieve and run the script from every client
(42 paginas)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales