Hello everyone,
I have some questions for the cooperation between Master->Saddles and Agents
I have an Icinga “master” with the director without Icingadb
I set everything up using the “NodeWizard”
Master- “Berlin”
zones.conf
/*
- Generated by Icinga 2 node setup commands
- on 2023-05-29 23:12:04 +0200
*/
object Endpoint “berlin” {
}
#Satellite
#Endpoint einrichten
object Endpoint “satellite.localdomain” {
host = “satellite”
}
object Zone “master” {
endpoints = [ “berlin” ]
}
object Zone “global-templates” {
global = true
}
object Zone “director-global” {
global = true
}
object Zone “satellite” {
endpoints = [ “satellite.localdomain” ]
parent = “master”
}
Mein Satellite
zones.conf
/*
- Generated by Icinga 2 node setup commands
- on 2023-05-30 00:31:04 +0200
*/
object Endpoint “berlin” {
host = “berlin”
port = “5665”
}
object Endpoint “satellite.localdomain” {
}
object Zone “master” {
endpoints = [ “berlinr” ]
}
/*
object Endpoint “satellite.localdomain” {
}
*/
object Zone “satellite” {
endpoints = [ “satellite.localdomain” ]
parent = “master”
}
object Zone “global-templates” {
global = true
}
object Zone “director-global” {
global = true
}
Mein Agent:
zones.conf
/*
- Generated by Icinga 2 node setup commands
- on 2023-06-16 17:00:15 +0000
*/
object Endpoint “satellite.localdomain” {
host = “192.168.0.200”
port = “5665”
}
object Endpoint “agent.localdomain” {
}
object Zone “satellite” {
endpoints = [ “satellite.localdomain” ]
}
object Zone “agent.localdomain” {
endpoints = [ “agent.localdomain” ]
parent = “satellite”
}
object Zone “global-templates” {
global = true
}
object Zone “director-global” {
global = true
}
When I integrated the agent via the NodeWizard, I got a ticket from the master.
I thought that was all good too, but I found that I had to sign the CA key on both the satellite and the “master” - is that correct?
I integrated the satellite into the director via kickstart. Unfortunately I have to reassign the user after each kickstart - is that correct, I thought it would be saved permanently.
If I have more satellites, that would be quite a lot of work after a kickstart…
Do I have to have one, the same API user including password, on the master, satellite and agent - for example user Sat_Agent with PW:123?
Shouldn’t I also see the agent as an end point, in the Director?
The topic cluster zone, end point, configuration is not described very well in the documentation and not at all for the director.
If I could understand it better, I would like to participate in creating documentation. I also do that professionally, for DAUS, which sometimes call themselves IT technicians. Who can I contact to help here?
What is the endpoint, is it the satellite or the agent at the end of the chain, which would actually make sense to me, or even the master?
Do I need to specify the endpoint when creating a satellite or creating an agent through the director?
The zone, as far as I understand it, is assigned by the director from the agent onwards, via the zonesconf on agent and satellite, correct?
How can I see in the LOG files that the constellation is communicating correctly.
Is my agent or my satellite set up correctly, see pictures:
Master:
Satellite
Agent