CFEngine 3 Beginner’s Guide

A step-by-step guide to setting up Cfengine and fully automating the configuration and management of your laptop, desktop, server, or mainframe.
Preview in Mapt

CFEngine 3 Beginner’s Guide

Rajneesh

A step-by-step guide to setting up Cfengine and fully automating the configuration and management of your laptop, desktop, server, or mainframe.
Mapt Subscription
FREE
$29.99/m after trial
eBook
$10.00
RRP $26.99
Save 62%
Print + eBook
$44.99
RRP $44.99
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
$0.00
$10.00
$44.99
$29.99 p/m after trial
RRP $26.99
RRP $44.99
Subscription
eBook
Print + eBook
Start 30 Day Trial

Frequently bought together


CFEngine 3 Beginner’s Guide Book Cover
CFEngine 3 Beginner’s Guide
$ 26.99
$ 10.00
AWS Administration - The Definitive Guide - Second Edition Book Cover
AWS Administration - The Definitive Guide - Second Edition
$ 35.99
$ 10.00
Buy 2 for $20.00
Save $42.98
Add to Cart

Book Details

ISBN 139781849514989
Paperback336 pages

Book Description

Cfengine is a compact automation framework primarily used to provide automated configuration and maintenance of laptops, desktops, servers, and mainframes. It is not a very complex framework, but certainly is extensive. There is too much to learn and it is hard to convey in a simple way what the software can do. That is where this book steps in and saves your day.

Cfengine 3 Beginner's Guide is the first and only book dedicated to Cfengine. It dives deep into using the framework's 'promise' language to solve complex data center problems. Find all the details you’ll need about using the advanced functions and variables, with easy-to-understand examples. The book also covers complex work flows that showcase the framework’s possibilities.

This book starts off with step-by-step instructions for installing and configuring the Cfengine server and clients, and moves on to configuring systems using Cfengine scripts. The author then walks you through the policy decision flow, conducting system and security audits.

This is followed by detailed discussions, through various examples, on how you can use Cfengine to configure systems, users, networks, databases, web servers et al. Adding to this, the book also provides a list of best practices, Cfengine policy decision flow, and how you may use the Cfengine Orion Cloud pack. By the end of the book you should be able to write policies for automating your complex data centre tasks.

Table of Contents

Chapter 1: Getting Started with CFEngine
Why CFEngine?
Installing CFEngine
Time for action – listing open ports and associated services
Time for action – creating a file under your home directory
Time for action – deleting log files
Summary
Chapter 2: Configuring Systems with CFEngine
How do CFEngine components communicate?
Setting up a policy server
Time for action – taking file backups
System configuration
Time for action – user and group configuration
Time for action – setting up a web service
Time for action – setting up a database service
Time for action – mounting a NFS volume
Time for action – setting up a network interface
Time for action – adding a jailed user to a system
Chapter 3: System Audit with CFEngine
Classes
Control promises
Time for action – file and directory permissions audit
Time for action – user and group audit
Server control promises
Time for action – log rotation using CFEngine
Access control using CFEngine
Time for action – installing OSSEC
Time for action – auditing the system with CFEngine and OSSEC
Summary
Chapter 4: Scheduling Tasks with CFEngine
Monitor control promises
Runagent control promises
Executor control promises
Reporter control promises
Time for action – monitoring a web server
Chapter 5: Security Audit with CFEngine
Configuring and auditing access controls
Time for action – managing access control with TCP wrapper
Time for action – auditing SSHD log files for break-in attempts
Time for action – managing iptables with CFEngine
Auditing the file system
Time for action – looking out for suspicious file names
Time for action – verifying the sudoers file
Time for action – finding a file with setuid and setgid
Time for action – auditing Apache logs
Summary
Chapter 6: Logging and Reporting with CFEngine
State information
Time for action – generating custom reports
Summary
Chapter 7: Workflows
Menu driven configuration
Content driven configuration
CFEngine templates
Time for action – distributing a MySQL configuration file using template expansion
Knowledge management
Time for action – topic map for services
Compliance
CFEngine and ITIL
CFEngine Nova—an introduction
Summary
Chapter 8: Advanced Functions and Variables
CFEngine special functions
Time for action – setting system variables
Functions that work on or with regular expressions
Time for action – getting a list of servers that are up and running on the network
Functions that return string
Time for action – concatenating individual objects using a given conjunction
Functions that fill arrays
Time for action – configuring Apache virtual hosts from a list of domains in a file
CFEngine special variables
Variable context mon
Time for action – logging information in case the system's load average is above the threshold
Variable context match
Time for action – comment matching lines
Summary
Chapter 9: CFEngine Best Practices
Basic considerations while writing CFEngine promises
General do's and don'ts while writing policies
Policy changes
Version control for policy files
Delegation of responsibility
Summary

What You Will Learn

  • Install and configure the Cfengine environment including the server and clients. Understand the Cfengine policy decision flow.
  • Build complete systems including laptops, desktops, servers, mainframes, etc. with minimal human intervention across multiple nodes.
  • Conduct system audits and detect anomalies in the desired state of a system.
  • Schedule various tasks from a centralized policy server and make changes to multiple systems' state by making those changes on a single centralized policy server.
  • Syntax and usage of various controls; Cfengine provides relevant and easy to understand examples.
  • Monitor services and system states from a centralized policy server.
  • Write complex work flows to solve complex data centre issues.
  • Use advanced functions and variables inbuilt in Cfengine.
  • Implement best practices for effective change management and infrastructure management.
  • Create and manage a knowledge base with an inbuilt knowledge management tool.

Authors

Table of Contents

Chapter 1: Getting Started with CFEngine
Why CFEngine?
Installing CFEngine
Time for action – listing open ports and associated services
Time for action – creating a file under your home directory
Time for action – deleting log files
Summary
Chapter 2: Configuring Systems with CFEngine
How do CFEngine components communicate?
Setting up a policy server
Time for action – taking file backups
System configuration
Time for action – user and group configuration
Time for action – setting up a web service
Time for action – setting up a database service
Time for action – mounting a NFS volume
Time for action – setting up a network interface
Time for action – adding a jailed user to a system
Chapter 3: System Audit with CFEngine
Classes
Control promises
Time for action – file and directory permissions audit
Time for action – user and group audit
Server control promises
Time for action – log rotation using CFEngine
Access control using CFEngine
Time for action – installing OSSEC
Time for action – auditing the system with CFEngine and OSSEC
Summary
Chapter 4: Scheduling Tasks with CFEngine
Monitor control promises
Runagent control promises
Executor control promises
Reporter control promises
Time for action – monitoring a web server
Chapter 5: Security Audit with CFEngine
Configuring and auditing access controls
Time for action – managing access control with TCP wrapper
Time for action – auditing SSHD log files for break-in attempts
Time for action – managing iptables with CFEngine
Auditing the file system
Time for action – looking out for suspicious file names
Time for action – verifying the sudoers file
Time for action – finding a file with setuid and setgid
Time for action – auditing Apache logs
Summary
Chapter 6: Logging and Reporting with CFEngine
State information
Time for action – generating custom reports
Summary
Chapter 7: Workflows
Menu driven configuration
Content driven configuration
CFEngine templates
Time for action – distributing a MySQL configuration file using template expansion
Knowledge management
Time for action – topic map for services
Compliance
CFEngine and ITIL
CFEngine Nova—an introduction
Summary
Chapter 8: Advanced Functions and Variables
CFEngine special functions
Time for action – setting system variables
Functions that work on or with regular expressions
Time for action – getting a list of servers that are up and running on the network
Functions that return string
Time for action – concatenating individual objects using a given conjunction
Functions that fill arrays
Time for action – configuring Apache virtual hosts from a list of domains in a file
CFEngine special variables
Variable context mon
Time for action – logging information in case the system's load average is above the threshold
Variable context match
Time for action – comment matching lines
Summary
Chapter 9: CFEngine Best Practices
Basic considerations while writing CFEngine promises
General do's and don'ts while writing policies
Policy changes
Version control for policy files
Delegation of responsibility
Summary

Book Details

ISBN 139781849514989
Paperback336 pages
Read More

Read More Reviews

Recommended for You

Instant Website Optimization for Retina Displays How-to Book Cover
Instant Website Optimization for Retina Displays How-to
$ 12.99
$ 9.10
Oracle E-Business Suite R12 Integration and OA Framework Development and Extension Cookbook Book Cover
Oracle E-Business Suite R12 Integration and OA Framework Development and Extension Cookbook
$ 32.99
$ 10.00
Instant Pentaho Data Integration Kitchen Book Cover
Instant Pentaho Data Integration Kitchen
$ 19.99
$ 10.00
Oracle Application Integration Architecture (AIA) Foundation Pack 11gR1: Essentials Book Cover
Oracle Application Integration Architecture (AIA) Foundation Pack 11gR1: Essentials
$ 38.99
$ 10.00
Instant Razor View Engine How-to Book Cover
Instant Razor View Engine How-to
$ 14.99
$ 10.00
Getting Started with Oracle Tuxedo Book Cover
Getting Started with Oracle Tuxedo
$ 17.99
$ 10.00