Does puppet do any sort of monitoring like AIDE/TripWire?
Besides just enforcing...
Puppet is not a monitoring tool. It can notify when it makes changes, but what it does is enforce state for a set of managed resources on a server.
It is not a replacement for monitoring tools like AIDE, TripWire, Nagios or Hyperic.
Puppet (and Puppet Enterprise) only manage the resources you have explicitly listed as part of a manifest (ie, a package, a file, a service state, etc). In that regard, it is not a replacement to a product such as TripWire that takes a full baseline of a system and alerts when any file changes in the environment at all are detected, even if they aren't being managed by Puppet.
However, if there are specific resources you want to audit and monitor the state of, but not take action on if they change, is to use the audit metaparameter.
Asked: 2013-02-05 13:32:44 -0500
Seen: 1,042 times
Last updated: Feb 05 '13