3 Unattended Installations page 91 enabling to do full booting preseeding and

3 unattended installations page 91 enabling to do

This preview shows page 2 - 4 out of 4 pages.

advantage of all the features outlined in section 4.3, “Unattended Installations” [page 91], enabling you to do full booting, preseeding, and unattended installation on multiple computers without physical boot media. Also, don’t forget the flexibility of the boot parameter preseed/url=. cfg (nor the use of the url alias), which allows you to set a network-based preseed file. 254 Kali Linux Revealed 10.2. Leveraging Configuration Management With the ability to install Kali on multiple computers very quickly, you will need some help in managing those machines post-installation. You can leverage configuration management tools to manage machines or configure replacement computers to any desired state. Kali Linux contains many popular configuration management tools that you might want to use (ansible, chef, puppet, saltstack, etc.) but in this section, we will only cover SaltStack. 10.2.1. Setting Up SaltStack SaltStack is a centralized configuration management service: a salt master manages many salt minions. You should install the salt-master package on a server that is reachable by all the hosts that you want to manage and salt-minion on the hosts that you wish to manage. Each minion must be told where to find their master. Simply edit /etc/salt/minion and set the master key to the DNS name (or IP address) of the Salt master. Note that Salt uses YAML as format for its configuration files. minion# vim /etc/salt/minion minion# grep ^master /etc/salt/minion master: Each minion has a unique identifier stored in /etc/salt/minion_id, which defaults to its hostname. This minion identifier will be used in the configuration rules and as such, it is important to set it properly before the minion opens its connection to the master: minion# echo kali-scratch >/etc/salt/minion_id minion# systemctl enable salt-minion minion# systemctl start salt-minion When the salt-minion service is running, it will try to connect to the Salt master to exchange some cryptographic keys. On the master side, you have to accept the key that the minion is using to identify itself to let the connection proceed. Subsequent connections will be automatic: master# systemctl enable salt-master master# systemctl start salt-master master# salt-key --list all Accepted Keys: Denied Keys: Unaccepted
Image of page 2
Keys: kali-scratch Rejected Keys: master# salt-key --accept kali-scratch The following keys are going to be accepted: Chapter 10 — Kali Linux in the Enterprise 255 Unaccepted Keys: kali-scratch Proceed? [n/Y] y Key for minion kali-scratch accepted. 10.2.2. Executing Commands on Minions As soon as minions are connected, you can execute commands on them from the master: master# salt ’*’ test.ping kali-scratch: True kali-master: True This command asks all minions (the ’*’ is a wildcard targeting all minions) to execute the ping function from the test execution module. This function returns a True value on success and is a simple way to ensure that the connection is working between the master and the various minions. You can also target a specific minion by giving its identifier in the first parameter, or possibly a subset of minions by using a less-generic wildcard (such as ’*-scratch’ or ’kali-*’). Here is an example of
Image of page 3
Image of page 4

You've reached the end of your free preview.

Want to read all 4 pages?

  • Summer '16
  • nushawan
  • Preboot Execution Environment

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern

Stuck? We have tutors online 24/7 who can help you get unstuck.
A+ icon
Ask Expert Tutors You can ask You can ask You can ask (will expire )
Answers in as fast as 15 minutes