Default contact method for Salt clients

Table of Contents

The default contact method using the Salt protocol is recommended unless there are specific needs. For more information about Salt in general, see Salt Guide Overview.

Software updates are generally pushed from the server to the client. Connections are initiated from the client. This means you must open ports on the server, not on clients. The Salt clients are also known as Salt minions. Uyuni Server installs a daemon on every client.

If you need to use Salt clients in a disconnected setup you can configure SSH Push as a contact method. With this contact method, clients can be located in a firewall-protected zone called a DMZ. For more information about SSH Push, see SSH Push contact method.

1. Onboarding Details

Salt has its own database to keep the keys for the minions. This needs to be kept in sync with the Uyuni database. As soon as the key is accepted in Salt, the onboarding process in Uyuni starts.

The onboarding process will look for existing systems in the Uyuni database by searching for the minion_id and the machine-id. Depending on the outcome, the following scenarios are possible:

  • If nothing is found, the new system gets created.

  • In case an entry with the minion_id or the machine-id is found, that system will be migrated to match the new system.

  • In case there is a match for both entries, and they are not the same system, the onboarding will be aborted with an error.

  • In this case the administrator needs to resolve the conflict by removing at least one of the systems.