Puppet is an open-source software configuration management tool.
Creating a Certificate in Puppet
Before configuring the Puppet connector in Lucidum, you must first create a certificate. Lucidum will use the certificate to access Puppet.
It is recommended to create a dedicated certificate for the Puppet connector. The name used for the certificate must be unique and not currently in use. Please follow the steps below to generate a certificate in Puppet and provide the needed files to Lucidum:
Connect to the Puppet master instance with SSH.
Run the following command to remove any previous instances of the certificate:
sudo /opt/puppetlabs/bin/puppet cert clean lucidum
Run the following command to create the certificate:
sudo /opt/puppetlabs/bin/puppet cert generate lucidum
Copy the following files to your workstation:
CA cert: /etc/puppetlabs/puppet/ssl/certs/ca.pem
Public key cert: /etc/puppetlabs/puppet/ssl/certs/lucidum.pem
Private key file: /etc/puppetlabs/puppet/ssl/private_keys/lucidum.pem (you will need to chmod the private key file to copy it)
Configuring the Connector for Puppet
To configure Lucidum to ingest data from Puppet:
Log in to Lucidum.
In the left pane, click Connector.
In the Connector page, click Add Connector.
Scroll until you find the Connector you want to configure. Click Connect. The Settings page appears.
In the Settings page, enter the following:
Server Name (required) - The hostname or IP address of the Puppet server along with port 8081.
CA File (required) - The Certificate Authority certificate for the Puppet master instance.
Certificate File (required) - The certificate file containing the public key for the key pair being used to authenticate. Please see the instructions below for generating the certificate in Puppet.
Private Key File (required) - The private key file for the certificate being used to authenticate.
Verify SSL. For future use.
To test the configuration, click Test.
If the connector is not configured correctly, Lucidum displays an error message.