Breaking News
Home / How To / How to install Rudder System Auditing Tool on Debian 10

How to install Rudder System Auditing Tool on Debian 10



Rudder is a free and continuous open source audit and configuration tool that can be used to automate IT infrastructure. It is a web-based and platform solution that makes your IT infrastructure more reliable and easier to manage. It comes with a set of rules that help you perform low-level configuration designs and keep an eye on infrastructure compliance. It provides a rich set of features including automatic host inventory, custom policy editor, user-friendly web interface, Git backend, autoupdata dynamic groups, reusable policies and many more.

Rudder is made of several components:

  • Rudder Server: It is used to define the configurations to apply and collect application reports.
  • Agents: Rudder trusts an agent installed on each managed machine. It is very fast and only takes 1
    0 seconds to verify 100 rules. It runs on all types of devices.
  • Relay servers: It is used to manage nodes in different networks through a single mail point.

In this guide we will show you how to install Rudder Server and Rudder. Debian 10. Series Agent

Prerequisites

  • Two servers running Debian 10.
  • A root password is configured on each server.

Getting Started

Before you begin, it is a good idea to update your system with the latest version. You can update your system with the following command:

  apt-get update -y 
apt-get upgrade -y

After updating the system, restart it to implement the changes.

Installing Rudder Server [19659011] Before installing the Rudder server, you must install some dependencies on your system. You can install all the necessary dependencies with the following command:

  apt-get install apt-transport-https ca-certificate wget dirmngr gnupg software-features-common -y 

Once the packages are installed, you must download and add Rudder public key to your server.

You can download and add it with the following command:

  wget --quiet -O- "https://repository.rudder.io/apt/rudder_apt_key. Pub" | apt-key add - 

Then add the Rudder repository with the following command:

  sh -c & # 39; echo "deb http://repository.rudder.io/apt/6.0/ $ (lsb_release - cs) main "> /etc/apt/sources.list.d/rudder.list'vud19659013?? Finally, update the repository and install the Rudder server by running the following command: 

  apt-get update -y 
apt- get install rudder-server-root -y

During installation, you will be asked to configure rsyslog-pgsql database with dbconfig-common as shown below:

 Configure rsyslog for postgres [19659017] Select No and hit enter to start the installation. When the installation is complete, you should see the following output:

  You can access it via https: // debian10 / rudder

INFO: Launch scripts to check if a migration is needed ...
Done
INFO: Make sure the Rudder web app is launched ... Ready
INFO: Make sure Apache HTTPd is started ... Ready
INFO: No deactivated file detection and no agent execution process either. Restart agent service ... rudder-cf-serverd: enabled
rudder-cf-execd: enabled
ok: stop rudder agent service
rudder-cf-serverd: enabled
rudder-cf-execd: enabled
ok: start service rudder-agent succeeded
Done
INFO: Inventories older than 3 days, sent again ... Rudder agent 6.0.2-debian10
Nod uuid: root
Start execution with config [20200203-072526-c88cf5a0]

M | Static technology component key message
E | compatible Inventory Inventory has been shipped
info Rudder agent was run on a subset of policies - not all policies were checked

## Summary ############################################## # #####################
1 components verified in 3 directives
=> 1 components in Enforce mode
-> 1 compatible
Execution time: 11.32s
################################################## ##############################
Done
CLOSING: The rudder guard check was executed properly. Look at the messages above to see if any errors have occurred.
Setting rudder-server-root (6.0.2-debian10) ...
Created symlink /etc/systemd/system/multi-user.target.wants/rudder-server.service → /lib/systemd/system/rudder-server.service.
Processing triggers for libc-bin (2.28-10) ...
Processing triggers for rsyslog (8.1901.0-1) ...

Access Rudder Web Interface

At this time, Rudder is installed and up and running. It's time to access the Rudder web interface.

Open your browser and enter the URL https: // your-server-ip / rudder / . You will be redirected to Rudder's login page as shown below:

 Rudder login

Enter the default Rudder username and password as admin / admin and click on SIGN IN - button. You should see the Rudder dashboard on the following screen:

 The Rudder dashboard

It is recommended to change the default administrator password for security reasons. You can also list your allowed networks in Settings => General => Allowed networks . You should add your network here if you want to add the node from another network. By default, this will contain your servers connected networks.

Installing and Configuring Rudder Agent

Next, you must install Rudder Agent on the system you want to manage from the Rudder server.

By default, the Rudder agent is not available in the standard Debian 10 repository. So you need to add the Rudder layer to your system.

Download and add the Rudder public key with the following command:

  wget --quiet -O- "https://repository.rudder.io /apt/rudder_apt_key.pub" | apt-key add - 

Then add to the Rudder repository with the following command:

  sh -c & # 39; echo "deb http://repository.rudder.io/apt/6.0/ $ (lsb_release -cs) main "> /etc/apt/sources.list.d/rudder.list'ebrit19659013??When the repository has been added, update the repository and install the Rudder agent with the following command: 

  apt-get update -y 
apt-get install rudder-agent -y

After installing the Rudder agent, you must define your Rudder server IP address in the Rudder agent configuration file.

You can do this by editing the following file: [19659012] nano /var/rudder/cfengine-community/policy_server.datebrit19659013??Add the following line:

  your-rudder-server-ip

Save and close the file when you are done. Then restart the Rudder agent service to implement the changes:

  systemctl restart rudder-agent.service 

You can now verify the Rudder agent service with the following command:

  systemctl status rudder-agent.service [19659013] You should get the following output: 

? rudder-agent.service - Rudder agent umbrella service
Loaded: loaded (/lib/systemd/system/rudder-agent.service; enabled; vendor setting: enabled)
Active: active (closed) since Fri 2020-01-31 08:00:37 UTC; 8 minutes ago
Document: man: rudder (8)
https://docs.rudder.io
Main PID: 5177 (code = terminated, status = 0 / SUCCESS)
Details: 0 (limit: 4701)
Memory: 0B
CGroup: /system.slice/rudder-agent.service

Jan 31 08:00:37 debianclient systemd [1]: Start Rudder agent umbrella service ...
Jan 31 08:00:37 debianclient systemd [1]: Rudder started agent umbrella service.

Verify Rudder Agent

The Ruder server and agent are now installed and configured. It's time to check if the Rudder agent is added to the Rudder server or not.

Open your browser and enter the URL https: // your-server-ip / rudder and click Node Management => Accept New Nodes as below:

 Rudder Agent Installation

 Roderod

Click Accept button to accept the new node. You should see the confirmation page shown below:

 Accept

Click the Accept button to accept the new node. You should see your newly added node on the following screen:

 The node has been presented

On the screen above you should see 100% deviation for a newly added node. To resolve this, you must force the agent to run and send an inventory by running the following command:

  rudder agent inventories 

You should see the following output:

  Rudder agent 6.0.2-debian10 (CFEngine Core 3.10.2)
Nod uuid: 20200203-072526-c88cf5a0-8211-8a30bs00ffa9
Start execution with config [30471213-214835-13b4se13]

M | Static technology component key message
E | compatible Inventory Inventory has been shipped

## Summary ############################################## # #####################
=> 1 components in Enforce mode
-> 1 compatible
runtime: 11.27s
################################################## ##############################

Conclusion

In the above article we learned how to install the Ruder server on the Debian 10 server. We also learned how to install the Rudder agent and add it to the Rudder server. You can now add more nodes to your Rudder server and start managing them. For more information on the Rudder configuration, visit the Rudder documentation page at Rudder Doc. Feel free to ask me if you have any questions.


Source link