Linux server with puppet is dropping from windows domain after about an hour.

I have a Red Hat 6 Linux server running as a puppet client that I have connected to a windows active directory domain. When I run reconfig-puppetagent, I get good results as it is pulling all the info from the puppet master. After a reboot, I can join the server to the domain using net ads join -S server -U MyDomianAdminAccount. after I've joined, I run a join-domain to verify and I get: Join is OK. After about an hour, my Linux server loses connection to the domain. I can still ping and re-join, but it will just drop me another hour later. I found that if I $ service puppet stop, the server won't drop from the domain so I know it's puppet. My systems requires that I remain on a domain and be able to run puppet.

A look at your puppet code would be beneficial.

puser gravatar imagepuser ( 2017-03-15 12:05:14 -0600 )edit

I know, I apologize, but I won't be able to give much information because my servers are on a classified network. I was wondering if anyone may have had this issue before.

A.M.Jester gravatar imageA.M.Jester ( 2017-03-15 13:31:56 -0600 )edit

Well going off what little information... "After about an hour" probably means that puppet is running again and doing something, possibly overwriting your changes. I would check the puppet runs and make sure that no changes are running after the first ones take place. The fact that disabling the puppet agent resolves the problem also points to this being the cause.

When you are rolling out new code / testing always watch it for at least an hour as it could take ~29 minutes to do the first run and then another 30 minutes after that to run it again. If there are changes on the second run then there is something wrong with your configuration. It should only change the state once and manage it from there.

