cdist-doc 4.4.1-1 / usr / share / doc / cdist / html / _sources / man7 / cdist-type__consul_agent.txt

This file is indexed.

/usr/share/doc/cdist/html/_sources/man7/cdist-type__consul_agent.txt is in cdist-doc 4.4.1-1.

This file is owned by root:root, with mode 0o644.

The actual contents of the file can be viewed below. 

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
cdist-type__consul_agent(7)
===========================

NAME
----
cdist-type__consul_agent - Manage the consul agent


DESCRIPTION
-----------
Configure and manage the consul agent.


REQUIRED PARAMETERS
-------------------
None.


OPTIONAL PARAMETERS
-------------------
acl-datacenter
   only used by servers. This designates the datacenter which is authoritative
   for ACL information.

acl-default-policy
   either "allow" or "deny"; defaults to "allow". The default policy controls the
   behavior of a token when there is no matching rule.

acl-down-policy
   either "allow", "deny" or "extend-cache"; "extend-cache" is the default.

acl-master-token
   only used for servers in the acl_datacenter. This token will be created with
   management-level permissions if it does not exist. It allows operators to
   bootstrap the ACL system with a token ID that is well-known.

acl-token
   when provided, the agent will use this token when making requests to the
   Consul servers.

acl-ttl
   used to control Time-To-Live caching of ACLs.

bind-addr
   sets the bind address for cluster communication

bootstrap-expect
   sets server to expect bootstrap mode

ca-file-source
   path to a PEM encoded certificate authority file which will be uploaded and
   configure using the ca_file config option.

cert-file-source
   path to a PEM encoded certificate file which will be uploaded and
   configure using the cert_file config option.

client-addr
   sets the address to bind for client access

datacenter
   datacenter of the agent

encrypt
   provides the gossip encryption key

group
   the primary group for the agent

json-config
   path to a partial json config file without leading { and trailing }.
   If json-config is '-' (dash), take what was written to stdin as the file content.

key-file-source
   path to a PEM encoded private key file which will be uploaded and
   configure using the key_file config option.

node-name
   name of this node. Must be unique in the cluster

retry-join
   address to attempt joining every retry_interval until at least one join works.
   Can be specified multiple times.

user
   the user to run the agent as

state
   if the agent is 'present' or 'absent'. Defaults to 'present'.
   Currently state=absent is not working due to some dependency issues.


BOOLEAN PARAMETERS
------------------
disable-remote-exec
   disables support for remote execution. When set to true, the agent will ignore any incoming remote exec requests.

disable-update-check
   disables automatic checking for security bulletins and new version releases

leave-on-terminate
   gracefully leave cluster on SIGTERM

rejoin-after-leave
   rejoin the cluster using the previous state after leaving

server
   used to control if an agent is in server or client mode

enable-syslog
   enables logging to syslog

verify-incoming
   enforce the use of TLS and verify a client's authenticity on incoming connections

verify-outgoing
   enforce the use of TLS and verify the peers authenticity on outgoing connections


EXAMPLES
--------

.. code-block:: sh

    # configure as server, bootstrap and rejoin
    hostname="$(cat "$__global/explorer/hostname")"
    __consul_agent \
       --datacenter dc1 \
       --node-name "${hostname%%.*}" \
       --disable-update-check \
       --server \
       --rejoin-after-leave \
       --bootstrap-expect 3 \
       --retry-join consul-01 \
       --retry-join consul-02 \
       --retry-join consul-03

    # configure as server, bootstrap and rejoin with ssl support
    hostname="$(cat "$__global/explorer/hostname")"
    __consul_agent \
       --datacenter dc1 \
       --node-name "${hostname%%.*}" \
       --disable-update-check \
       --server \
       --rejoin-after-leave \
       --bootstrap-expect 3 \
       --retry-join consul-01 \
       --retry-join consul-02 \
       --retry-join consul-03 \
       --ca-file-source /path/to/ca.pem \
       --cert-file-source /path/to/cert.pem \
       --key-file-source /path/to/key.pem \
       --verify-incoming \
       --verify-outgoing

    # configure as client and try joining existing cluster
    __consul_agent \
       --datacenter dc1 \
       --node-name "${hostname%%.*}" \
       --disable-update-check \
       --retry-join consul-01 \
       --retry-join consul-02 \
       --retry-join consul-03


SEE ALSO
--------
consul documentation at: <http://www.consul.io/docs/agent/options.html>.


AUTHORS
-------
Steven Armstrong <steven-cdist--@--armstrong.cc>


COPYING
-------
Copyright \(C) 2015 Steven Armstrong. You can redistribute it
and/or modify it under the terms of the GNU General Public License as
published by the Free Software Foundation, either version 3 of the
License, or (at your option) any later version.

APT Browse - Built by Thomas Orozco.