SaltStack 实战之远程执行-Modules

[TOC]

1. 官方模块链接

官网可执行模块文档： https://docs.saltstack.com/en/latest/ref/modules/all/

2. 常用模块

network 模块
收集和管理网络信息的模块

service 模块
管理 minion 系统服务的模块

state 模块
控制 minion 端 state 系统的模块

file 模块
管理 minion 端文件和目录相关的模块

3. 禁用 cmd 模块方法

vim /etc/salt/master

publisher_acl_blacklist:
#  users:
#    - root
#    - '^(?!sudo_).*$'   #  all non sudo users
  modules:
    - cmd

[root@salt-master111 ~]# salt '10.1.0.112' cmd.run 'uptime'
10.1.0.112:
     00:51:52 up 204 days,  6:38,  2 users,  load average: 0.00, 0.01, 0.05
[root@salt-master111 ~]# systemctl restart salt-master
[root@salt-master111 ~]# salt '10.1.0.112' cmd.run 'uptime'
Failed to authenticate! This is most likely because this user is not permitted to execute commands, but there is a small possibility that a disk error occurred (check disk/inode usage).
[root@salt-master111 ~]#