From a618962d077e656662933e228f314fe088395a3f Mon Sep 17 00:00:00 2001 From: Ben Vincent Date: Sat, 11 May 2024 15:22:16 +1000 Subject: [PATCH 1/2] fix: move selinux profile to cobbler - only import the selinux enforce profile in cobbler --- hieradata/common.yaml | 1 - hieradata/roles/infra/cobbler/server.yaml | 3 +++ 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/hieradata/common.yaml b/hieradata/common.yaml index 80e79a1..cc16e0e 100644 --- a/hieradata/common.yaml +++ b/hieradata/common.yaml @@ -98,7 +98,6 @@ facts_path: '/opt/puppetlabs/facter/facts.d' hiera_classes: - timezone - - profiles::selinux::setenforce profiles::ntp::client::ntp_role: 'roles::infra::ntp::server' profiles::ntp::client::use_ntp: 'region' diff --git a/hieradata/roles/infra/cobbler/server.yaml b/hieradata/roles/infra/cobbler/server.yaml index 98511cb..6709152 100644 --- a/hieradata/roles/infra/cobbler/server.yaml +++ b/hieradata/roles/infra/cobbler/server.yaml @@ -16,3 +16,6 @@ profiles::pki::vault::alt_names: profiles::cobbler::params::service_cname: 'cobbler.main.unkin.net' profiles::selinux::setenforce::mode: permissive + +hiera_classes: + - profiles::selinux::setenforce From 6633f07d8b08487d9c96008a498757eb9f7d4233 Mon Sep 17 00:00:00 2001 From: Ben Vincent Date: Sat, 11 May 2024 15:30:01 +1000 Subject: [PATCH 2/2] feat: install policycoreutils - install policycoreutils on all almalinux releases --- hieradata/os/AlmaLinux/all_releases.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/hieradata/os/AlmaLinux/all_releases.yaml b/hieradata/os/AlmaLinux/all_releases.yaml index e1e5192..9edbf92 100644 --- a/hieradata/os/AlmaLinux/all_releases.yaml +++ b/hieradata/os/AlmaLinux/all_releases.yaml @@ -12,5 +12,6 @@ profiles::puppet::agent::puppet_version: '7.26.0' profiles::packages::install: - lzo - xz + - policycoreutils lm-sensors::package: lm_sensors