Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Chef client on VIOs? How do you manage your VIO configs?
Operating Systems AIX Chef client on VIOs? How do you manage your VIO configs? Post 303038659 by RecoveryOne on Tuesday 10th of September 2019 01:43:36 PM
Old 09-10-2019
Chef client on VIOs? How do you manage your VIO configs?
I know the VIOs are generally to be treated as an appliance and one should never drop down to oem_setup_env. In reality however, oem is a very useful tool to get the job done. So that leads me into the question of using the Chef client on a VIO.

Currently a big push to manage all our *nix infrastructure with a compliance as code type of tool. Make sure there's odm alerts, ntp is set, whole list of other things. And force a box back into compliance if its out of spec. In past this was managed by each lpar holding a directory with scripts and items added to the appropriate places.

Has anyone tried to run the Chef client on the VIO? I see that the AIX cookbook has a nimviosupdate to help build resources. However, I am not finding a lot of information about actual customers running the client on the VIO in a production setting. So, has anyone ran the Chef client on the VIO? Did you have any issues with IBM support if they noticed the client running? Looking at the supported software solutions I see that the puppet client is supported, but no mention of Chef. In a document by Paul Finley from 2016, there is mention of VIOS Patch management with Chef but unable to find anything beyond that.

So part two of my question:
If you are not running any sort of configuration management on the VIOs, then how are you controlling the configs for your VIOs?

In the past, each VIO was built as needed but DNS servers retire and new ones get put into place. Search domains same thing. We've even had to change our NTP server. Doing this all by hand is tedious.

Thanks everyone!
 

7 More Discussions You Might Find Interesting

1. AIX

vio server and vio client

Hi, I want to know wheather partition size for installation of vio client can be specified on vio server example If I am installing vio server on blade with 2*300gb hard disk,after that I want to create 2 vio client (AIX Operating system) wheather I can specify hard disk size while... (1 Reply)
Discussion started by: manoj.solaris
1 Replies

2. AIX

rebooting vio client

Hi, I would like to reboot vio client but I am not able to access vio client(I am not able to get putty) , I am able to get putty of vio server, is there any command by using which from vio server I can reboot vio client? (3 Replies)
Discussion started by: manoj.solaris
3 Replies

3. AIX

Finding cpu information on vio client

Hi, I am having single p series blade with Single Physcial CPU with dual core, on that vio server is installed, I have created vio client allocate 0.9 each cpu , now when I am running prtconf command on vio client it is showing "2" no of processor, My query using which command it will... (1 Reply)
Discussion started by: manoj.solaris
1 Replies

4. AIX

Unable to connect VIO client

Hi I am facing very strange issue on my vio server 5 vio clients are confgured, now I am to connect 3 vio client , i am unable to connect 2 vio client my ip address,subnet mask,gateway is correct. i have rebooted and reconfigured the ip address, but issue is persists. Kindly suggest how to... (0 Replies)
Discussion started by: manoj.solaris
0 Replies

5. AIX

how will i know if a lun has been already mapped to a vio client

Hi im logged in to the vio servers now. when i give # lspv | wc -l i get the count as 6246 how will i know if a lun has been already mapped to a vio client or it is left free without mapping to any of the vio client ? (1 Reply)
Discussion started by: newtoaixos
1 Replies

6. AIX

vio server ethernet to vio client ethernet(concepts confusing)

Hi In the vio server when I do # lsattr -El hdisk*, I get a PVID. The same PVID is also seen when I put the lspv command on the vio client partition. This way Im able to confirm the lun using the PVID. Similarly how does the vio client partition gets the virtual ethernet scsi client adapter... (1 Reply)
Discussion started by: newtoaixos
1 Replies

7. AIX

cdrom confusion on the vio client lpar

Hi In my vio server I have the below output $ lsvopt | grep -i SAPSITGS sapsitgs_cdrom TL12UP.iso 3182 In my vio client lpar I have the below output root@sapsitgs:/ # lsdev -Cc cdromcd0 Available Virtual SCSI Optical Served by VIO Server cd1... (1 Reply)
Discussion started by: newtoaixos
1 Replies

LEARN ABOUT DEBIAN

knife-data-bag

KNIFE-DATA-BAG(1)						    Chef Manual 						 KNIFE-DATA-BAG(1)

NAME

       knife-data-bag - Store arbitrary data on a Chef Server

SYNOPSIS

       knife data bag sub-command (options)

DESCRIPTION

       Data  bags  are stores of arbitrary JSON data. Each data bag is a collection that may contain many items. Data Bag Items are indexed by the
       Chef Server and can be searched via knife-search(1).

       Data bags are available to all nodes configured by chef-client(8), and are therefore a convenient mechanism to  store  global  information,
       such as lists of administrative accounts that should be configured on all hosts.

DATA BAG SUB-COMMANDS
CREATE

       knife data bag create bag name [item id] (options)

       -s, --secret SECRET
	      A secret key used to encrypt the data bag item. See encryption support below.

       --secret-file SECRET_FILE
	      The path to a file containing the secret key to be used to encrypt the data bag item.

       If  item  id  is given, creates a new, empty data bag item and opens it for editing in your editor. The data bag will be created if it does
       not exist.

       If item id is not given, the data bag will be created.

DELETE

       knife data bag delete bag name [item id] (options)

       Delete a data bag, or an item from a data bag.

EDIT

       knife data bag edit bag name item id (options)

       -s, --secret SECRET
	      A secret key used to encrypt the data bag item. See encryption support below.

       --secret-file SECRET_FILE
	      The path to a file containing the secret key to be used to encrypt the data bag item.

       Edit an item in a data bag.

FROM FILE

       knife data bag from file bag name file (options)

       knife data bag from file bag name file1 file2 file3 (options)

       knife data bag from file bag name folder (options)

       -s, --secret SECRET
	      A secret key used to encrypt the data bag item. See encryption support below.

       --secret-file SECRET_FILE
	      The path to a file containing the secret key to be used to encrypt the data bag item.

       Load a data bag item from a JSON file. If file is a relative or absolute path to the file, that file will  be  used.  Otherwise,  the  file
       parameter  is  treated  as  the	base  name  of	a  data  bag  file  in	a  Chef  repository,  and  knife  will	search	for  the  file	in
       ./data_bags/bag_name/file. For example knife data bag from file users dan.json would attempt to load the file ./data_bags/users/dan.json.

LIST

       knife data bag list (options)

       -w, --with-uri
	      Show corresponding URIs

       Lists the data bags that exist on the Chef Server.

SHOW

       knife data bag show BAG [ITEM] (options)

       -s, --secret SECRET
	      A secret key used to encrypt the data bag item. See encryption support below.

       --secret-file SECRET_FILE
	      The path to a file containing the secret key to be used to encrypt the data bag item.

       Show a specific data bag or an item in a data bag. The output will be formatted according to the --format option.

ENCRYPTION SUPPORT

       Data Bag Items may be encrypted to keep their contents secret. This may be desireable when storing sensitive information such  as  database
       passwords, API keys, etc.

       Data Bag Item encryption uses the AES-256 CBC symmetric key algorithm.

       CAVEATS:  Keys  are not encrypted; only values are encrypted. The "id" of a Data Bag Item is not encrypted, since it is used by Chef Server
       to store the item in its database. For example, given the following data bag item:

	   {"id": "important_passwords", "secret_password": "opensesame"}

       The key "secret_password" will be visible to an evesdropper, but the value "opensesame" will be protected. Both the key "id" and its  value
       "important_passwords" will be visible to an evesdropper.

       Chef Server does not provide a secure mechanism for distributing encryption keys.

SEE ALSO

       knife-search(1)

AUTHOR

       Chef was written by Adam Jacob adam@opscode.com with many contributions from the community.

DOCUMENTATION

       This  manual  page was written by Joshua Timberman joshua@opscode.com. Permission is granted to copy, distribute and / or modify this docu-
       ment under the terms of the Apache 2.0 License.

CHEF

       Knife is distributed with Chef. http://wiki.opscode.com/display/chef/Home

Chef 10.12.0							     June 2012							 KNIFE-DATA-BAG(1)
All times are GMT -4. The time now is 04:34 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy