A systems administrator is responsible for a hybrid environment that includes long-running, stable application servers and ephemeral nodes within a highly restricted DMZ. The security policy for the DMZ prohibits the installation of any persistent agent software. The administrator needs to use Puppet to manage configurations for both environments. Which approach best satisfies these requirements?
Use agentless Puppet for all nodes in both environments.
Install the Puppet agent on all nodes in both environments.
Use agentless Puppet for the stable servers and the Puppet agent for the DMZ nodes.
Use the Puppet agent for the stable servers and agentless Puppet for the DMZ nodes.
The correct approach is to use the standard Puppet agent for the long-running servers and an agentless solution, like Puppet Bolt, for the ephemeral DMZ nodes. The Puppet agent, installed on a node, communicates with a primary server to enforce a desired state configuration, making it ideal for continuous management of stable servers. For the DMZ, where agents are not allowed, agentless Puppet (often using SSH or WinRM for transport) allows for executing tasks and applying configurations on an as-needed basis without requiring a permanent installation on the target.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the difference between agent-based and agentless Puppet?
Open an interactive chat with Bash
What is Puppet Bolt and how does it work?
Open an interactive chat with Bash
Why is agent-based Puppet a good choice for stable servers?
Open an interactive chat with Bash
CompTIA Linux+ XK0-006 (V8)
Automation, Orchestration, and Scripting
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access