Spacewalk 1.9 Installation
Install Repositories
rpm -Uvh http://yum.spacewalkproject.org/1.9/RHEL/6/x86_64/spacewalk-repo-1.9-1.el6.noarch.rpm
rpm -Uvh http://download.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm
cat > /etc/yum.repos.d/jpackage-generic.repo << EOF
[jpackage-generic]
name=JPackage generic
baseurl=http://mirror.ibcp.fr/pub/jpackage/5.0/generic/free/
enabled=1
gpgcheck=1
gpgkey=http://www.jpackage.org/jpackage.asc
EOFInstalling Database Server (Embedded Version)
yum install spacewalk-setup-embedded-postgresql
spacewalk-setup-embedded-postgresql create --db <Databse Name> --user <사용자> --password <암호>- 스크립트를 사용하여 암호 생성시 가급적 특수문자를 피하도록 한다.
Example)
spacewalk-setup-embedded-postgresql create --db db_spacewalk --user spaceuser --password '*********'
Initializing database: [ OK ]
Starting postgresql service: [ OK ]
2519
Enter password for new role:
Enter it again:
Initializing database: [ OK ]
Starting postgresql service: [ OK ]
2519
Enter password for new role:
Enter it again:
Configuring the firewall
vi /etc/sysconfig/iptables
추가
-A INPUT -m state --state NEW -m udp -p udp --dport 69 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 4545 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 5222 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 5269 -j ACCEPT
포트 설명
- port TCP 5222 : push actions to client machines
- port TCP 5269 : push actions to a Spacewalk Proxy
- port UDP 69 : tftp
service iptables restartInstalling Spacewalk
yum install spacewalk-postgresql Configuring Spacewalk
- Creating Answers file
Spacewalk 설치 시 프롬프트에서 필요사항을 입력할 수 있으나 여기서는 자동 응답 파일(answers.txt)을 생성하도록 한다.admin-email=daehyung@abc.org ssl-set-org=abc ssl-set-org-unit=System Information ssl-set-city=Seoul ssl-set-state=Seoul ssl-set-country=KR ssl-password= ssl-set-email=daehyung@abc.org ssl-config-sslvhost=Y db-backend=postgresql db-name=db_spacewalk db-user=spaceuser db-password= db-host=127.0.0.1 db-port=5432 enable-tftp=Y
Configuring Spacewalk
spacewalk-setup --disconnected --answer-file=answers.txt --skip-db-install
위의 answers.txt 파일에 암호 관련 내용을 넣지 않았기 때문에 spacewalk-setup 실행 시 암호 질의가 나옴
Console Message
* Loading answer file: answers.txt.
** Database: Setting up database connection for PostgreSQL backend.
** Database: Embedded database installation SKIPPED.
** Database: Populating database.
*** Progress: ###################################
* Setting up users and groups.
** GPG: Initializing GPG and importing key.
* Performing initial configuration.
* Activating Spacewalk.
** Loading Spacewalk Certificate.
** Verifying certificate locally.
** Activating Spacewalk.
* Enabling Monitoring.
* Configuring apache SSL virtual host.
** /etc/httpd/conf.d/ssl.conf has been backed up to ssl.conf-swsave
* Configuring tomcat.
** /etc/sysconfig//tomcat6 has been backed up to tomcat6-swsave
** /etc/tomcat6//server.xml has been backed up to server.xml-swsave
** /etc/tomcat6//web.xml has been backed up to web.xml-swsave
* Configuring jabberd.
* Creating SSL certificates.
CA certificate password?
Re-enter CA certificate password?
Passwords did not match, please try again.
CA certificate password?
Re-enter CA certificate password?
** SSL: Generating CA certificate.
** SSL: Deploying CA certificate.
** SSL: Generating server certificate.
** SSL: Storing SSL certificates.
* Deploying configuration files.
* Update configuration in database.
* Setting up Cobbler..
Processing /etc/cobbler/modules.conf
`/etc/cobbler/modules.conf' -> `/etc/cobbler/modules.conf-swsave'
Processing /etc/cobbler/settings
`/etc/cobbler/settings' -> `/etc/cobbler/settings-swsave'
httpd does not appear to be running and proxying cobbler
httpd does not appear to be running and proxying cobbler
* Restarting services.
Installation complete.
Visit https://spacewalk.abc.orgbc.org to create the Spacewalk administrator account.
** Database: Setting up database connection for PostgreSQL backend.
** Database: Embedded database installation SKIPPED.
** Database: Populating database.
*** Progress: ###################################
* Setting up users and groups.
** GPG: Initializing GPG and importing key.
* Performing initial configuration.
* Activating Spacewalk.
** Loading Spacewalk Certificate.
** Verifying certificate locally.
** Activating Spacewalk.
* Enabling Monitoring.
* Configuring apache SSL virtual host.
** /etc/httpd/conf.d/ssl.conf has been backed up to ssl.conf-swsave
* Configuring tomcat.
** /etc/sysconfig//tomcat6 has been backed up to tomcat6-swsave
** /etc/tomcat6//server.xml has been backed up to server.xml-swsave
** /etc/tomcat6//web.xml has been backed up to web.xml-swsave
* Configuring jabberd.
* Creating SSL certificates.
CA certificate password?
Re-enter CA certificate password?
Passwords did not match, please try again.
CA certificate password?
Re-enter CA certificate password?
** SSL: Generating CA certificate.
** SSL: Deploying CA certificate.
** SSL: Generating server certificate.
** SSL: Storing SSL certificates.
* Deploying configuration files.
* Update configuration in database.
* Setting up Cobbler..
Processing /etc/cobbler/modules.conf
`/etc/cobbler/modules.conf' -> `/etc/cobbler/modules.conf-swsave'
Processing /etc/cobbler/settings
`/etc/cobbler/settings' -> `/etc/cobbler/settings-swsave'
httpd does not appear to be running and proxying cobbler
httpd does not appear to be running and proxying cobbler
* Restarting services.
Installation complete.
Visit https://spacewalk.abc.orgbc.org to create the Spacewalk administrator account.
Start Spacewalk
spacewalk-service start
Spacewalk Service 제어 명령 사용법
/usr/sbin/spacewalk-service [stop|start|restart]
서비스가 실행되면 웹브라우저로 https://<ip>에 접근하여 최초 Spacewalk 관리자 계정을 생성하도록 한다.
No comments:
Post a Comment