Erchef privilege

Hi:
i use erchef to manage server,but the client could use client.pem tu
get information of other nodes and all environments,cookbook?

is there anyone could help me?

is there any way to separate the nodes like private chef separate nodes by
organizations?

2013/4/28 liu jiwei ljvsss@gmail.com

Hi:
i use erchef to manage server,but the client could use client.pem tu
get information of other nodes and all environments,cookbook?

is there anyone could help me?

Hello,

maybe you can achieve what you want by:

1. using environment to group your nodes, or
2. setting tags to your nodes and searching nodes by tags, or
3. using data bag to define your grouping

Tetsu

On Apr 29, 2013, at 9:59 AM, liu jiwei ljvsss@gmail.com wrote:

is there any way to separate the nodes like private chef separate nodes by organizations?

2013/4/28 liu jiwei ljvsss@gmail.com
Hi:
i use erchef to manage server,but the client could use client.pem tu get information of other nodes and all environments,cookbook?

is there anyone could help me?

client could get the information of all environments

what i think is,the clinet just can get the information of it shoud to get,

if i have 3 envionment: envionment1,environment2,environemen3,
node1's environemnt is environment1, this node shoud could just get the
information environment1,it could get the information of environent2 and
environment3

this will not be diffcoult in erchef?

how about my thoughts?

2013/4/29 Tetsu Soh tetsu.soh@gmail.com

Hello,

maybe you can achieve what you want by:

1. using environment to group your nodes, or
2. setting tags to your nodes and searching nodes by tags, or
3. using data bag to define your grouping

Tetsu

On Apr 29, 2013, at 9:59 AM, liu jiwei ljvsss@gmail.com wrote:

is there any way to separate the nodes like private chef separate nodes by
organizations?

2013/4/28 liu jiwei ljvsss@gmail.com

Hi:
i use erchef to manage server,but the client could use client.pem tu
get information of other nodes and all environments,cookbook?

is there anyone could help me?

So you want to completely isolate nodes? just like multiple-tenant of hosted chef?

In that case just set up multi chef servers and register nodes to different chef servers.

On Apr 29, 2013, at 8:26 PM, liu jiwei ljvsss@gmail.com wrote:

client could get the information of all environments

what i think is,the clinet just can get the information of it shoud to get,

if i have 3 envionment: envionment1,environment2,environemen3,
node1's environemnt is environment1, this node shoud could just get the information environment1,it could get the information of environent2 and environment3

this will not be diffcoult in erchef?

how about my thoughts?

2013/4/29 Tetsu Soh tetsu.soh@gmail.com
Hello,

maybe you can achieve what you want by:

1. using environment to group your nodes, or
2. setting tags to your nodes and searching nodes by tags, or
3. using data bag to define your grouping

Tetsu

On Apr 29, 2013, at 9:59 AM, liu jiwei ljvsss@gmail.com wrote:

is there any way to separate the nodes like private chef separate nodes by organizations?

2013/4/28 liu jiwei ljvsss@gmail.com
Hi:
i use erchef to manage server,but the client could use client.pem tu get information of other nodes and all environments,cookbook?

is there anyone could help me?

use multi chef server to manage mulit nodes is waste.

now just make a patch to erche to API will sloved this

2013/4/29 Tetsu Soh tetsu.soh@gmail.com

So you want to completely isolate nodes? just like multiple-tenant of
hosted chef?

In that case just set up multi chef servers and register nodes to
different chef servers.

On Apr 29, 2013, at 8:26 PM, liu jiwei ljvsss@gmail.com wrote:

client could get the information of all environments

what i think is,the clinet just can get the information of it shoud to get,

if i have 3 envionment: envionment1,environment2,environemen3,
node1's environemnt is environment1, this node shoud could just get the
information environment1,it could get the information of environent2 and
environment3

this will not be diffcoult in erchef?

how about my thoughts?

2013/4/29 Tetsu Soh tetsu.soh@gmail.com

Hello,

maybe you can achieve what you want by:

1. using environment to group your nodes, or
2. setting tags to your nodes and searching nodes by tags, or
3. using data bag to define your grouping

Tetsu

On Apr 29, 2013, at 9:59 AM, liu jiwei ljvsss@gmail.com wrote:

is there any way to separate the nodes like private chef separate nodes
by organizations?

2013/4/28 liu jiwei ljvsss@gmail.com

Hi:
i use erchef to manage server,but the client could use client.pem
tu get information of other nodes and all environments,cookbook?

is there anyone could help me?

emm, still cannot get your point.

Private chef has role based access control. If that is what want you want, by private chef.

with OSC, I mentioned few alternative solution.
Not perfect but works for small business/organization.

On Apr 29, 2013, at 8:53 PM, liu jiwei ljvsss@gmail.com wrote:

use multi chef server to manage mulit nodes is waste.

now just make a patch to erche to API will sloved this

2013/4/29 Tetsu Soh tetsu.soh@gmail.com
So you want to completely isolate nodes? just like multiple-tenant of hosted chef?

In that case just set up multi chef servers and register nodes to different chef servers.

On Apr 29, 2013, at 8:26 PM, liu jiwei ljvsss@gmail.com wrote:

client could get the information of all environments

what i think is,the clinet just can get the information of it shoud to get,

if i have 3 envionment: envionment1,environment2,environemen3,
node1's environemnt is environment1, this node shoud could just get the information environment1,it could get the information of environent2 and environment3

this will not be diffcoult in erchef?

how about my thoughts?

2013/4/29 Tetsu Soh tetsu.soh@gmail.com
Hello,

maybe you can achieve what you want by:

1. using environment to group your nodes, or
2. setting tags to your nodes and searching nodes by tags, or
3. using data bag to define your grouping

Tetsu

On Apr 29, 2013, at 9:59 AM, liu jiwei ljvsss@gmail.com wrote:

is there any way to separate the nodes like private chef separate nodes by organizations?

2013/4/28 liu jiwei ljvsss@gmail.com
Hi:
i use erchef to manage server,but the client could use client.pem tu get information of other nodes and all environments,cookbook?

is there anyone could help me?

Separating nodes to orgs like you mention is one of the reasons why people buy private chef.

http://www.opscode.com/private-chef/

-Pete

On Apr 29, 2013, at 6:53 AM, liu jiwei ljvsss@gmail.com wrote:

use multi chef server to manage mulit nodes is waste.

now just make a patch to erche to API will sloved this

2013/4/29 Tetsu Soh tetsu.soh@gmail.com

So you want to completely isolate nodes? just like multiple-tenant of hosted chef?

In that case just set up multi chef servers and register nodes to different chef servers.

On Apr 29, 2013, at 8:26 PM, liu jiwei ljvsss@gmail.com wrote:

client could get the information of all environments

what i think is,the clinet just can get the information of it shoud to get,

if i have 3 envionment: envionment1,environment2,environemen3,
node1's environemnt is environment1, this node shoud could just get the information environment1,it could get the information of environent2 and environment3

this will not be diffcoult in erchef?

how about my thoughts?

2013/4/29 Tetsu Soh tetsu.soh@gmail.com

Hello,

maybe you can achieve what you want by:

1. using environment to group your nodes, or
2. setting tags to your nodes and searching nodes by tags, or
3. using data bag to define your grouping

Tetsu

On Apr 29, 2013, at 9:59 AM, liu jiwei ljvsss@gmail.com wrote:

is there any way to separate the nodes like private chef separate nodes by organizations?

2013/4/28 liu jiwei ljvsss@gmail.com

Hi:
i use erchef to manage server,but the client could use client.pem tu get information of other nodes and all environments,cookbook?

is there anyone could help me?

thanks,
but private-chef's api is not all public,so what i think is make a patch to
erchef to make nodes just get infomation of it's should got

2013/4/29 Pete Cheslock petecheslock@gmail.com

Separating nodes to orgs like you mention is one of the reasons why people
buy private chef.

http://www.opscode.com/private-chef/

-Pete

On Apr 29, 2013, at 6:53 AM, liu jiwei ljvsss@gmail.com wrote:

use multi chef server to manage mulit nodes is waste.

now just make a patch to erche to API will sloved this

2013/4/29 Tetsu Soh tetsu.soh@gmail.com

So you want to completely isolate nodes? just like multiple-tenant of
hosted chef?

In that case just set up multi chef servers and register nodes to
different chef servers.

On Apr 29, 2013, at 8:26 PM, liu jiwei ljvsss@gmail.com wrote:

client could get the information of all environments

what i think is,the clinet just can get the information of it shoud to
get,

if i have 3 envionment: envionment1,environment2,environemen3,
node1's environemnt is environment1, this node shoud could just get the
information environment1,it could get the information of environent2 and
environment3

this will not be diffcoult in erchef?

how about my thoughts?

2013/4/29 Tetsu Soh tetsu.soh@gmail.com

Hello,

maybe you can achieve what you want by:

1. using environment to group your nodes, or
2. setting tags to your nodes and searching nodes by tags, or
3. using data bag to define your grouping

Tetsu

On Apr 29, 2013, at 9:59 AM, liu jiwei ljvsss@gmail.com wrote:

is there any way to separate the nodes like private chef separate nodes
by organizations?

2013/4/28 liu jiwei ljvsss@gmail.com

Hi:
i use erchef to manage server,but the client could use client.pem
tu get information of other nodes and all environments,cookbook?

is there anyone could help me?