Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Updates to private-cloud examples - el9 #150

Open
wants to merge 1 commit into
base: devel
Choose a base branch
from

Conversation

clevesque
Copy link
Contributor

expecting to use cloudera.exe 2.4.1+ & cloudera.cluster 4.4.0+

  • Creates a Elastic IP address for bastion, instead of public IP that changes after instance restart
  • Enables IPA/IdM to use an OS version differing from bastion rest of proxied cluster
  • adds a local role, krb_conf_cdp_friendly, to be called after pre-setup, alters /etc/krb5.conf to conventions that wont break CM, Base and ECS
  • Includes example add_ipa_users_groups, will create new user and add that user to new group "field-se" , that is to be mapped to CM ROLE_ADMIN
  • definition includes a mapping of "se_group_name" to CM ROLE_ADMIN, allows group member ("field-se") to use their login creds and be enabled as admin
  • definition includes global var freeipa_sidecar, which indicates all client config is done during pre_setup and doesnt need to be repeated via legacy plays
  • sets postgresql to version 14
  • sets cdp base to version 7.1.9SP1
  • sets cm version to be compat with BaseSP1 & ECS 1.5.4chf1

Tested on RHEL 8.8, 8.9, 8.10 and 9.4
No Testing on el7, Ubuntu, Debian,SLES
Signed-off-by: Chuck Levesque clevesque@cloudera.com

expecting to use cloudera.exe 2.4.1+ & cloudera.cluster 4.4.0+

- Creates a Elastic IP address for bastion, instead of public IP that changes after instance restart
- Enables IPA/IdM to use an OS version differing from bastion rest of proxied cluster
- adds a local role, krb_conf_cdp_friendly, to be called after pre-setup, alters /etc/krb5.conf to conventions that wont break CM, Base and ECS
- Includes example add_ipa_users_groups, will create new user and add that user to new group "field-se" , that is to be mapped to CM ROLE_ADMIN
- definition includes a mapping of "se_group_name" to CM ROLE_ADMIN, allows group member ("field-se") to use their login creds and be enabled as admin
- definition includes global var freeipa_sidecar, which indicates  all client config is done during pre_setup and doesnt need to be repeated via legacy plays
- sets postgresql to version 14
- sets cdp base to version 7.1.9SP1
- sets cm version to be compat with BaseSP1 & ECS 1.5.4chf1

Tested on RHEL 8.8, 8.9, 8.10 and 9.4
No Testing on el7, Ubuntu, Debian,SLES
Signed-off-by: Chuck Levesque <clevesque@cloudera.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

Successfully merging this pull request may close these issues.

1 participant