Ask Your Question
0

how to assign fqdn for chef server?

asked 2013-09-30 04:23:42 -0600

nora gravatar image

updated 2013-09-30 05:20:38 -0600

I use heat template to create chef server. How to assign fqdn for this chef server? How to map chef server's fqdn to chef server's ip in the chef client? does dns is a must? what is the good way?

edit retag flag offensive close merge delete
add a comment

1 answer

Sort by ยป oldest newest most voted
0

answered 2016-08-26 08:58:04 -0600

shawnzhu gravatar image

DNS name is optional If all your chef clients and chef server are in a private network in a single OpenStack (which means they can talk to chef server over IP address only and it can ignore SSL host verification b/c of trust), you can use IP address in chef server url without a DNS name. E.g., you can provisioning chef server with IP address 10.40.40.5 (make sure port 4000 is open in security group), and all your chef client can use URL https://10.40.40.5:4000/ (it can ignore SSL verify on chef clients since they're both in private network).

However, if your chef clients access chef server over public network like internet, you need a DNS name to:

  1. locate where chef server is
  2. chef clients must verify the chef server hostname via SSL
  3. chef server provisioning must use the correct name (FQDN) to generate a cert (or use your own cert following this guide: http://bealetech.com/blog/2013/06/14/custom-ssl-certificates-with-chef-11-server/ (custom ssl certificates with chef 11 server)).

According to step 3, you can use cloud init to inject an FQDN in /etc/opscode/chef-server.rb:

  chef-server-config:
    type: OS::Heat::CloudConfig
    properties:
      cloud_config:
        manage_etc_hosts: true
        user: ubuntu
        - path: /etc/opscode/chef-server.rb
          content:
            str_replace:
              template: |
                server_name = "$chef-server-fqdn"
                api_fqdn server_name
                bookshelf['vip'] = server_name
                nginx['url'] = "https://#{server_name}"
                nginx['server_name'] = server_name
              params:
                $chef-server-fqdn: chef-server.example.com
        runcmd:
        - execute-this-command-to-install-chef-server.sh

  server-init:
    type: OS::Heat::MultipartMime
    properties:
      parts:
      - config: { get_resource: chef-server-config }

  chef-server:
    type: OS::Nova::Server
    properties:
      name: chef-server
      image: { get_param: image_name }
      flavor: { get_param: flavor }
      key_name: your-keypair-name
      networks:
      - network: { get_param: network_name }
      user_data_format: SOFTWARE_CONFIG
      user_data: { get_resource: server-init }
edit flag offensive delete link more
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

subscribe to rss feed

Stats

Asked: 2013-09-30 04:23:42 -0600

Seen: 1,009 times

Last updated: Aug 26 '16

Related questions

"hostname -f" fails, while "hostname -A" works

HEAT template to attach an unknown number of ports (opened on different networks) to a server

Internal Server Error (HTTP 500) error during Service Create

DNS for OpenStack infrastructure.

Swift object-server Invalid

Access instances by hostname instead of IP

How to assign a fixed external ip to a vm?

Cannot ping Internet hosts via Quantum router

dynamic dns

Nova: Server's metadata