Nick McSpadden nmcspadden
nmcspadden
/ BuildingMunkiDockerWithChef_Client.rb
Created
March 3, 2015 21:57
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| log_location STDOUT | |
| chef_server_url "https://chef.sacredsf.org:443/organizations/ssh" | |
| validation_client_name "ssh-validator" | |
| ssl_verify_mode :verify_peer |
nmcspadden
/ BuildingMunkiDockerWithChef_ChefMunkiDockerfile
Created
March 3, 2015 21:53
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| FROM nmcspadden/munki | |
| RUN apt-get -yqq update | |
| RUN apt-get -yqq install curl lsb-release | |
| RUN curl -L https://getchef.com/chef/install.sh | bash -s -- -v 11.16.2 -P container | |
| ADD client.rb /etc/chef/client.rb | |
| ADD validation.pem /etc/chef/validation.pem |
nmcspadden
/ BuildingMunkiDockerWithChef_BasicMunkiDockerfile
Created
March 3, 2015 21:50
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| FROM nginx | |
| RUN mkdir -p /munki_repo | |
| Run mkdir -p /etc/nginx/sites-enabled/ | |
| ADD nginx.conf /etc/nginx/nginx.conf | |
| ADD munki-repo.conf /etc/nginx/sites-enabled/ | |
| VOLUME /munki_repo | |
| EXPOSE 80 |
nmcspadden
/ SecurelyBootstrapping_InstallYosemite-PuppetMunki.plist
Created
February 11, 2015 19:05
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="UTF-8"?> | |
| <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> | |
| <plist version="1.0"> | |
| <dict> | |
| <key>Source</key> | |
| <string>/Applications/Install OS X Yosemite.app</string> | |
| <key>Output</key> | |
| <string>InstallYosemitePuppetMunki.pkg</string> | |
| <key>Packages</key> | |
| <array> |
nmcspadden
/ SecurelyBootstrapping_site.pp
Created
February 11, 2015 19:02
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| user { 'puppet': | |
| ensure => 'absent', | |
| } | |
| group { 'puppet': | |
| ensure => 'absent', | |
| } | |
| if $::operatingsystem == 'Darwin' { | |
| include munki_ssl | |
| } |
nmcspadden
/ SecurelyBootstrapping_init.pp
Created
February 11, 2015 19:01
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class munki_ssl { | |
| if $::operatingsystem != 'Darwin' { | |
| fail('The munki_ssl module is only supported on Darwin/OS X') | |
| } | |
| file { ['/Library/Managed Installs', '/Library/Managed Installs/certs/' ]: | |
| ensure => directory, | |
| owner => 'root', | |
| group => 'wheel', | |
| } |
nmcspadden
/ SecurelyBootstrapping_ManagedInstalls-10.10-SSL.mobileconfig
Last active
August 29, 2015 14:15
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <key>mcx_preference_settings</key> | |
| <dict> | |
| <key>InstallAppleSoftwareUpdates</key> | |
| <true/> | |
| <key>SoftwareRepoURL</key> | |
| <string>https://munki2.domain.com/repo</string> | |
| <key>SoftwareUpdateServerURL</key> | |
| <string>http://repo.domain.com/content/catalogs/others/index-10.10-10.9-mountainlion-lion-snowleopard-leopard.merged-1_release.sucatalog</string> | |
| <key>SoftwareRepoCACertificate</key> | |
| <string>/Library/Managed Installs/certs/ca.pem</string> |
nmcspadden
/ SecurelyBootstrapping_PreparePuppet.sh
Last active
October 6, 2015 12:06
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Stolen from PSU: | |
| # https://wikispaces.psu.edu/display/clcmaclinuxwikipublic/First+Boot+Script | |
| echo "Waiting for network access" | |
| /usr/sbin/scutil -w State:/Network/Global/DNS -t 180 | |
| sleep 5 | |
| # Get the serial number |
nmcspadden
/ Log in script for ARD
Last active
August 29, 2015 14:14
Send UNIX Command for ARD to log in a device
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| osascript <<EndOfMyScript | |
| set logInUser to "username" | |
| set logInPassword to "password" | |
| tell application "System Events" | |
| tell application process "loginwindow" | |
| key code 53 | |
| delay 1 | |
| key code 125 | |
| delay 1 | |
| key code 36 using option down |
nmcspadden
/ pg_hba.conf
Created
December 8, 2014 16:58
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sed '/host all all 127.0.0.1\/32 trust/a host all all 172.17.0.1\/16 trust' pg_hba.conf |