mirror of https://github.com/empayre/fleet.git synced 2024-11-06 08:55:24 +00:00

History

Roberto Dip 835491d029 update puppet metadata.json file for publishing (#12418 )		2023-06-20 19:08:46 -03:00
..
data	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
examples	improve logging and error reporting in the puppet module (#12369 )	2023-06-16 12:40:50 -03:00
lib/puppet	improve matching resiliency of puppet endpoints (#12402 )	2023-06-20 18:24:54 -03:00
manifests	improve logging and error reporting in the puppet module (#12369 )	2023-06-16 12:40:50 -03:00
spec	improve matching resiliency of puppet endpoints (#12402 )	2023-06-20 18:24:54 -03:00
templates	improve logging and error reporting in the puppet module (#12369 )	2023-06-16 12:40:50 -03:00
.gitattributes	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
.gitignore	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
.pdkignore	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
.puppet-lint.rc	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
.rspec	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
.rubocop.yml	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
.yardopts	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
CHANGELOG.md	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
Gemfile	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
hiera.yaml	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
metadata.json	update puppet metadata.json file for publishing (#12418 )	2023-06-20 19:08:46 -03:00
Rakefile	add a puppet module to manage MDM features (#12032 )	2023-05-31 17:26:12 -03:00
README.md	improve logging and error reporting in the puppet module (#12369 )	2023-06-16 12:40:50 -03:00

README.md

fleetdm

Description
Setup - The basics of getting started with fleetdm
- Setup requirements
- Beginning with fleetdm
Usage - Configuration options and additional functionality
- Defining profiles for a device
- Releasing a device from await configuration
Limitations - OS compatibility, etc.
Development - Guide for contributing to the module

Description

Manage MDM settings for macOS devices using Fleet

Setup

Setup Requirements

This module requires to add fleetdm as a reporter in your report settings, this helps Fleet understand when your Puppet run is finished and assign the device to a team with the necessary profiles.

For example, in your server configuration:

reports = http,fleetdm

To communicate with the Fleet server, you also need to provide your server URL and a token as Hiera values:

---
fleetdm::host: https://example.com
fleetdm::token: my_token

Note: for the token, we recommend using an API-only user, with a GitOps role.

Beginning with fleetdm

Usage

Defining profiles for a device

The examples/ folder in this repo contain some examples. Generally, you can define profiles using the custom resource type fleetdm::profile:

node default {
  fleetdm::profile { 'com.apple.universalaccess':
    template => template('fleetdm/profile-template.mobileconfig.erb'),
    group    => 'workstations',
  }
}

Releasing a device from await configuration

If your DEP profile had await_device_configured set to true, you can use the fleetdm::release_device function to release the device:

$host_uuid = $facts['system_profiler']['hardware_uuid']
$response = fleetdm::release_device($host_uuid)
$err = $response['error']

if $err != '' {
  notify { "error releasing device: ${err}": }
}

Limitations

At the moment, this module only works for macOS devices.

Development

To trigger a puppet run locally:

puppet apply --debug --test --modulepath="$(pwd)/.." --reports=fleetdm  --hiera_config hiera.yaml examples/multiple-teams.pp

To lint/fix Puppet (.pp) files, use:

pdk bundle exec puppet-lint --fix .

To lint/fix Ruby (.rb) files, use:

pdk bundle exec rubocop -A