Manage ssh client dengan salt.module.ssh
Setting file_roots saltmaster #
Buat file konfig pada path /etc/salt/master.d/
nano /etc/salt/master.d/file.conf
Edit seperti konfig dibawah ini.
root@saltmaster:~# cat /etc/salt/master.d/file.conf
file_roots:
base:
- /opt/push/state
Bagian base bisa kalian sesuaikan. Nantinya folder tersebut untuk menyimpan file atau konfig init.sls
Selanjutnya buat folder serta file untuk menyimpan public key ssh
root@saltmaster:~# mkdir -p /opt/push/state/ssh-key
root@saltmaster:~# cd /opt/push/state/ssh-key
root@saltmaster:~# nano key-rsa
Edit file key-rsa dengan public key ssh
root@saltmaster:/opt/push/state/ssh-key# cat key-rsa
ssh-rsa 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 [email protected]
ssh-rsa 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 [email protected]
Cek keyfile server minion #
salt '*' ssh.check_key_file root salt://ssh/keyfile
Contoh
root@saltmaster:~# salt saltminion.srv1.de ssh.check_key_file root salt://ssh-key/key-rsa
saltminion.srv1.de:
----------
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:
exists
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:
add
Add public key SSH #
Untuk menambahkan key pada salt bisa menggunakan perintah berikut
salt '*' ssh.set_auth_key_from_file <user> salt://ssh_keys/<user>.id_rsa.pub
Contoh
root@saltmaster:~# salt saltminion.srv1.de ssh.set_auth_key_from_file root salt://ssh-key/key-rsa
saltminion.srv1.de:
new
Referensi perintah lain bisa cek pada page salt.modules.ssh