PAM standalone offline install
Use these instructions to install Puppet Application Manager (PAM) in an offline environment where the Puppet Application Manager host server does not have direct access to the internet.
- Review the Puppet Application Manager
The server must meet the following minimum requirements:
Memory Storage CPUs Open ports 2 GB + application requirements
At least 100 GB for
/var/openebs. This is primarily divided among:
- 2 GB for
- 32 GB for
- 40 GB for
- 20 GB for
/var/openebs+ additional application-specific storage.
2 + application requirements
TCP: 443, 2379,2380, 6443, 6783, 8800, 9001 (offline only), and 10250
UDP: 6783, 6784Note: Swap and Firewalld are not supported for use with this version of Puppet Application Manager. The installation script attempts to disable these services if they are present. The installation script also disables SELinux by default. If you want to keep SELinux enabled, append the
-s preserve-selinux-configswitch to the Puppet Application Manager install command. This may require additional configuration to adapt SELinux policy to the installation.
- 2 GB for
- Ensure that IP address ranges
10.32.0.0/22are locally accessible. See Resolve IP address range conflicts for instructions.
- Ensure that the nodes can resolve their own hostnames, through either local host mapping or a reachable DNS server.
If you use the
puppetlabs/firewallmodule to manage your cluster's firewall rules with Puppet, be advised that purging unknown rules from changes breaks Kubernetes communication. To avoid this, apply the
puppetlabs/pam_firewallmodule before installing Puppet Application Manager.
From a workstation with internet access, download the cluster installation
bundle (note that this bundle is ~6GB):
Copy the installation bundle to the host node and unpack it:
tar xzf puppet-application-manager-standalone.tar.gz
Run the installation command:
cat install.sh | sudo bash -s airgap
The installation script prints the address and password (only shown
once, so make careful note of it) for Puppet Application Manager:
--- Kotsadm: http://<PUPPET APPLICATION MANAGER ADDRESS>:8800 Login with password (will not be shown again): <PASSWORD> ---Note: If you lose this password or wish to change it, see Reset the Puppet Application Manager password for instructions.
- The installation script prints the address and password (only shown once, so make careful note of it) for Puppet Application Manager:
Navigate to the Puppet Application Manager UI using the address
provided by the installation script (
http://<PUPPET APPLICATION MANAGER ADDRESS>:8800) and follow the prompts.The Puppet Application Manager UI is where you manage Puppet applications. You’ll be guided through the process of setting up SSL certificates, uploading a license, and checking to make sure your infrastructure meets application system requirements.
Follow the instructions for configuring and deploying your Puppet applications on Puppet Application Manager.
For more information on installing Continuous Delivery for PE offline, see Install Continuous Delivery for PE in an offline environment.
For more information on installing Comply offline, see Install Comply offline.