Saltstack

Configuration management for Linux, Windows, & OSX.

Salt encrypts data communications, as well as providing only minion data needed to minions. Supports GPG encryption of sensitive data out of the box, no special services required.

Working assumptions:

• Salt Master runs unprivileged (see: Non-root User).

• Two main enivronments prod and dev.

• Service directory structure enforces separation of prod and dev environments and minimizes globally avaliable data. (see: Service Directory Best Practices).

• Minion examples executed from the Master can be executed locally on the Minion with salt-call.

Related Material:

• Requirements for minimum requirements and file locations.

• Service Setup for basic Salt service setup.

• Salt Master for Salt Master basic configuration.

• Salt Minion for Salt Minion basic configuration.

• GPG Encrypt Pillar Data for GPG usage with Salt Pillar data.

• Minion Management for managing minions on Salt Master.

• Frequent Commands for frequently used commands.

• Common Issues for common issues with saltstack.

• Working Notes for in progress notes.