3.4.2. Installing SIMP From A Repository¶
Using the official SIMP YUM repositories is the simplest method for getting up and running with SIMP on an existing infrastructure. If you are using a virtual infrastructure, such as AWS, Microsoft Azure, Google Cloud, or your own internal VM stack, this is the method that you will want to use.
Note
This method does not modify your system’s partitioning scheme or encryption scheme to meet any regulatory policies. If you want an example of what that should look like see the Kickstart files in the simp-core Git repository.
3.4.2.1. Enable EPEL¶
Note
RHEL systems will need to enable the EPEL Repositories manually.
sudo yum install epel-release -y
sudo yum install pygpgme yum-utils -y
3.4.2.2. Install The SIMP-Project Repositories¶
Add the following to /etc/yum.repos.d/simp-project.repo
, replacing
6
with the appropriate version of SIMP. If the repo file does not exist,
create it. The repo file contents for SIMP 6.X
is shown below.
If you don’t know what versions map together, please see the SIMP Version Guide.
Important
RHEL Users should replace $releasever
below with the actual release
version.
This would be 7
for RHEL 7 and 6
for RHEL 6
Warning
The whitespace and alignment shown before the additional gpgkey
values must be preserved
[simp-project_6_X]
name=simp-project_6_X
baseurl=https://packagecloud.io/simp-project/6_X/el/$releasever/$basearch
gpgcheck=1
enabled=1
gpgkey=https://raw.githubusercontent.com/NationalSecurityAgency/SIMP/master/GPGKEYS/RPM-GPG-KEY-SIMP
https://download.simp-project.com/simp/GPGKEYS/RPM-GPG-KEY-SIMP-6
sslverify=1
sslcacert=/etc/pki/tls/certs/ca-bundle.crt
metadata_expire=300
[simp-project_6_X_dependencies]
name=simp-project_6_X_dependencies
baseurl=https://packagecloud.io/simp-project/6_X_Dependencies/el/$releasever/$basearch
gpgcheck=1
enabled=1
gpgkey=https://raw.githubusercontent.com/NationalSecurityAgency/SIMP/master/GPGKEYS/RPM-GPG-KEY-SIMP
https://download.simp-project.com/simp/GPGKEYS/RPM-GPG-KEY-SIMP-6
https://yum.puppet.com/RPM-GPG-KEY-puppetlabs
https://yum.puppet.com/RPM-GPG-KEY-puppet
https://apt.postgresql.org/pub/repos/yum/RPM-GPG-KEY-PGDG-96
https://dl.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-$releasever
sslverify=1
sslcacert=/etc/pki/tls/certs/ca-bundle.crt
metadata_expire=300
3.4.2.3. Rebuild The Yum Cache¶
sudo yum makecache
3.4.2.4. Install the SIMP Server¶
Install the puppetserver
package as follows:
sudo yum install -y puppetserver
Install the core SIMP packages as follows:
sudo yum install -y simp
The simp
RPM installs the SIMP core Puppet modules and other critical
SIMP assets such as its environment skeleton, custom SELinux policy, CLI,
and utilities.
- The Puppet modules are installed into
/usr/share/simp
and do not affect any existing Puppet environment. Other steps in the SIMP server setup will deploy the modules into a Puppet environment.
SIMP also provides a large number of ‘extra’ Puppet module packages that you
can install as needed (pupmod-simp-gnome
, pupmod-simp-nfs
, etc.). You
can discover what extra modules are available by searching for pupmod
via
yum
. Alternatively, you can install all of the extra Puppet modules into
/usr/share/simp
by simply running sudo yum install -y simp-extras
.
3.4.2.5. Next Steps¶
Now that your system has been installed, you should proceed to Initial SIMP Server Configuration to complete the initial setup.