{"id":1492,"date":"2019-09-16T13:35:00","date_gmt":"2019-09-16T19:35:00","guid":{"rendered":"https:\/\/ugit.siua.ac.cr\/?p=1492"},"modified":"2019-09-25T15:29:03","modified_gmt":"2019-09-25T21:29:03","slug":"chef-configuracion-de-los-clientes","status":"publish","type":"post","link":"https:\/\/sada.services\/?p=1492","title":{"rendered":"CHEF: Configuraci\u00f3n de los clientes"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\">Debian<\/h2>\n\n\n\n<ul class=\"wp-block-list\"><li>Se debe tener acceso a privilegios de superusuario (comando sudo)<ul><li>En caso de ser Debian primero se debe habilitar al usuario que entra por ssh en el archivo sudoers<\/li><\/ul><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>su\napt-get install sudo\nsudo adduser ugit sudo<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se debe habilitar la entrada\/salida de datos por los puertos 80 y 443.<ul><li>Para m\u00e1s informaci\u00f3n visitar <a rel=\"noreferrer noopener\" href=\"https:\/\/www.mikroways.net\/2009\/06\/24\/habilitar-https-en-apache\/\" target=\"_blank\">aqu\u00ed<\/a>.<\/li><\/ul><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>apt-get install apache2<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se debe crear la carpeta donde se guardar\u00e1n los certificados<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>mkdir .certificates\ncd .certificates\/<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se generan las llaves con una encriptaci\u00f3n de 4096 bits<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>openssl genrsa -des3 -out server.key 4096\nopenssl req -new -key server.key -out server.csr\nopenssl rsa -in server.key -out server.key.insecure\nmv server.key server.key.secure\nmv server.key.insecure server.key<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se activa el modulo de SSL de apache y se reinicia el servicio<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>a2enmod ssl\nservice apache2 restart<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se edita el archivo de configuraci\u00f3n de los puertos<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>nano \/etc\/apache2\/ports.conf\n\nListen 80\nListen 443<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se reinicia el servidor<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>service apache2 restart<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Instalar SSH para el acceso remoto<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>apt-get install openssh-server openssh-client<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>A\u00f1adir el nodo desde la workstation para que se comunique con el servidor<ul><li>Nota: Esto se debe de hacer bajo la carpeta control_chef en la workstation.<\/li><\/ul><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>knife bootstrap IP_DEL_NODO -N NOMBRE_DEL_NODO -x USUARIO -P CONTRASE\u00d1A --sudo<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Verificar que se haya a\u00f1adido el nodo correctamente<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>knife client list<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\">Ubuntu<\/h2>\n\n\n\n<ul class=\"wp-block-list\"><li>Se debe tener acceso a privilegios de superusuario (comando sudo)<\/li><li>Se debe instalar apache para habilitar la entrada\/salida de datos por los puertos 80 y 443.<ul><li>Para m\u00e1s informaci\u00f3n visitar aqu\u00ed.<\/li><\/ul><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>apt-get install apache2<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se debe crear la carpeta donde se guardar\u00e1n los certificados<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>mkdir .certificates\ncd .certificates\/<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se generan las llaves con una encriptaci\u00f3n de 4096 bits<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>openssl genrsa -des3 -out server.key 4096\nopenssl req -new -key server.key -out server.csr\nopenssl rsa -in server.key -out server.key.insecure\nmv server.key server.key.secure\nmv server.key.insecure server.key<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se activa el modulo de SSL de apache y se reinicia el servicio<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>a2enmod ssl\nservice apache2 restart<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se edita el archivo de configuraci\u00f3n de los puertos<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>nano \/etc\/apache2\/ports.conf\n\nListen 80\nListen 443<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Se reinicia el servidor<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>service apache2 restart<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Instalar SSH para el acceso remoto<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>apt-get install openssh-server openssh-client<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>A\u00f1adir el nodo desde la workstation para que se comunique con el servidor<ul><li>Nota: Esto se debe de hacer bajo la carpeta control_chef en la workstation.<\/li><\/ul><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>knife bootstrap IP_DEL_NODO -N NOMBRE_DEL_NODO -x USUARIO -P CONTRASE\u00d1A --sudo<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Verificar que se haya a\u00f1adido el nodo correctamente<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>knife client list<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\">Windows<\/h2>\n\n\n\n<ul class=\"wp-block-list\"><li>Asegurarse que tenga instalado el Windows Remote Management<ul><li>Nota: para esto se debe abrir un S\u00edmbolo del sistema como administrador.<\/li><\/ul><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>winrm --version<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Hacer la configuraci\u00f3n r\u00e1pida del WinRM<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>winrm quickconfig<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>A\u00f1adir el nodo desde la workstation para que se comunique con el servidor<ul><li>Nota: Esto se debe de hacer bajo la carpeta control_chef en la workstation.<\/li><\/ul><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>knife bootstrap windows winrm IP_DEL_NODO --winrm-user USUARIO --winrm-password 'CONTRASE\u00d1A' --node-name NOMBRE_DEL_NODO<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"<p>CHEF: Configuraci\u00f3n de los clientes<\/p>\n","protected":false},"author":2,"featured_media":2143,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[98],"tags":[99],"class_list":["post-1492","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-chef","tag-chef"],"blocksy_meta":{"styles_descriptor":{"styles":{"desktop":"","tablet":"","mobile":""},"google_fonts":[],"version":6}},"_links":{"self":[{"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/posts\/1492","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1492"}],"version-history":[{"count":2,"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/posts\/1492\/revisions"}],"predecessor-version":[{"id":2150,"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/posts\/1492\/revisions\/2150"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/media\/2143"}],"wp:attachment":[{"href":"https:\/\/sada.services\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1492"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1492"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1492"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}