cfengine
CFEngine
Last Seen Alert
* To clear “last seen” alert in Uptime. This alert is intended to identify hosts where the cfengine daemon has stopped responding. It will also trigger when a host has been decommissioned.
- First, fix any valid hosts. Meaning hosts that have not been decommissioned, they are likely showing up because the cfengine daemon is stopped or missing.
- Once the valid hosts are fixed (you may validate by waiting until the monitor fires again in 4 hours) you can run the following command to clear the decommissioned hosts.
- Again *make sure* that the valid hosts are fixed *prior* to running the command below.
/usr/local/sbin/cfshow --purge --last-seen
Key authentication
Most client issues, like “BAD: keys did not match”, likely means that either the IP address of the client has changed or the key on CFENGINE is from a prior client. To fix, on the client:
scp /var/cfengine/ppkeys/localhost.pub cfengine:/var/cfengine/ppkeys/root-(client IP).pub
Run client manually
This is what should be in crontab (minus the 'v'): /var/cfengine/bin/cfexecd -Fv To see more detail: /var/cfengine/bin/cfagent --debug --no-splay
cfengine.txt · Last modified: 2017/10/27 01:09 by 127.0.0.1