[Labs-l] IMPORTANT: ldap renaming -- possible interruptions to logins, sudo, dns
Andrew Bogott
abogott at wikimedia.org
Sun Sep 28 15:35:32 UTC 2014
Thanks, Bryan!
As of this morning, there are still 120 instances that are failing to
update properly with puppet. That's too many for me to fix myself! A
complete list of broken instances is at the bottom of
https://wikitech.wikimedia.org/wiki/Ldap_rename -- please have a look
and fix what you can.
Thank you!
-Andrew
On 9/26/14 12:47 PM, Bryan Davis wrote:
> On Thu, Sep 25, 2014 at 7:56 PM, Andrew Bogott <abogott at wikimedia.org> wrote:
>> Quick summary:
>>
>> If you are only a tool labs user, you can ignore this email.
>>
>> If you work in a non-tools project and all of your instances are happily
>> puppetized and talking to the central puppet server, you can probably ignore
>> this email.
>>
>> If you work in a non-tools project and you have a local puppetmaster or use
>> role::puppet::self, you MUST apply the following patches to your instance,
>> or you may LOSE ALL ACCESS to your labs instances:
>>
>> https://gerrit.wikimedia.org/r/#/c/159740
>> https://gerrit.wikimedia.org/r/#/c/162689
> Here's what I did to update one host that has role::puppet::self applied:
>
> $ cd /var/lib/git/operations/puppet
> $ sudo git fetch origin
> $ sudo git rebase origin/production
> ## verified with git log that Andrew's patches were present locally
> $ sudo puppet agent --test --verbose
> ## Could not start Service[puppetmaster] failure messages seen
> $ sudo service puppetmaster stop
> $ sudo service puppetmaster start
> $ sudo puppet agent --test --verbose
> ## clean puppet run
>
> Hope that helps someone.
>
> Bryan
More information about the Labs-l
mailing list