Closed
Bug 1443270
Opened 6 years ago
Closed 6 years ago
Bacula cert/key generated and configured for MDC2 deploystudio
Categories
(Infrastructure & Operations :: Infrastructure: Backups, task)
Infrastructure & Operations
Infrastructure: Backups
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: dividehex, Assigned: rtucker)
References
Details
The MDC2 deploystudio server will need an ssl cert/key generated and bacula configured. The paths to be backed up will be identical to the deploystudio server in mdc1. FQDN: install.test.releng.mdc2.mozilla.com
|
Reporter | |
Comment 1•6 years ago
|
||
Hey :rtucker, when you have the time could we get this key/cert generated for this deploystudio host? I'd like knock this off my to-do list soon. Thanks!
|
Assignee | |
Updated•6 years ago
|
Assignee: infra → rtucker
|
|
Assignee | |
Comment 2•6 years ago
|
||
All of the files you need are available here: bacula1.private.mdc2.mozilla.com:/home/jwatkins Let me know once you've configured the host and then I'll do some tests
Flags: needinfo?(jwatkins)
Pushed by jwatkins@mozilla.com: https://hg.mozilla.org/build/puppet/rev/d1ab7c09290d uncomment bacula config for install.test.releng.mdc2; a=nodechange
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
|
|
Reporter | |
Comment 4•6 years ago
|
||
Thanks Rob! I've added the ca, cert and key to releng hiera and manually executed puppet in the host. It should be ready for the server side configurations.
|
|
Reporter | |
Updated•6 years ago
|
Status: RESOLVED → REOPENED
Flags: needinfo?(jwatkins)
Resolution: FIXED → ---
|
|
Reporter | |
Comment 5•6 years ago
|
||
I forgot to add the symlink after the initial puppet run. It should be working now. Error: Unable to find launchd plist for job: com.baculasystems.bacula-fd Error: /Stage[main]/Bacula_client/Service[com.baculasystems.bacula-fd]/ensure: change from absent to running failed: Unable to find launchd plist for job: com.baculasystems.bacula-fd [root@install.test.releng.mdc2.mozilla.com ~]# cd /Library/LaunchDaemons/ [root@install.test.releng.mdc2.mozilla.com LaunchDaemons]# ln -s /usr/local/bacula-8.8.5/Library/LaunchDaemons/com.baculasystems.bacula-fd.plist com.baculasystems.bacula-fd.plist Notice: /Stage[main]/Bacula_client/Service[com.baculasystems.bacula-fd]/ensure: ensure changed 'stopped' to 'running' Info: /Stage[main]/Bacula_client/Service[com.baculasystems.bacula-fd]: Unscheduling refresh on Service[com.baculasystems.bacula-fd]
|
|
Reporter | |
Comment 6•6 years ago
|
||
Hey Rob, the bacula agent is running on this host. Please configure and test when you have a chance. Thanks!
Flags: needinfo?(rtucker)
|
|
Assignee | |
Comment 7•6 years ago
|
||
Can you confirm there aren't any firwewall rules? status client=install.test.releng.mdc2.mozilla.com Failed to connect to Client install.test.releng.mdc2.mozilla.com
Flags: needinfo?(rtucker)
|
|
Reporter | |
Comment 8•6 years ago
|
||
Host based firewall looks good on the host itself but the agent is dying on the host. I'll try to debug this.
# Table allow_infra_bacula_mdc2
table <allow_infra_bacula_mdc2> persist { \
10.50.75.200/32 \
}
pass in quick on en0 inet proto tcp from <allow_infra_bacula_mdc2> to any port = 9102 flags S/SA keep statePushed by jwatkins@mozilla.com: https://hg.mozilla.org/build/puppet/rev/8b9852f23c90 fix broken bacula ca cert for mdc2; a=bustage
|
|
Reporter | |
Comment 10•6 years ago
|
||
It was an error on my side. Puppet was setting the ca cert file empty. I've restarted daemon and it looks like it is running now.
|
|
Assignee | |
Comment 11•6 years ago
|
||
Looks good. Thanks!
|
|
Assignee | |
Updated•6 years ago
|
Status: REOPENED → RESOLVED
Closed: 6 years ago → 6 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•