After completing the
SaltStack Config installation process using either installation method, you must complete some post-installation tasks. These tasks are intended to be followed in a specific order as listed in this guide.
Install the license key When you first install SaltStack Config, it contains a 14-day trial license. To continue using SaltStack Config beyond the 14-day trial, contact a sales representative to purchase a license and then install the key.
Install and configure the Master Plugin As part of the post-installation process, you need to install, configure, and upgrade the Master Plugin. The Master Plugin enables your Salt masters to communicate with SaltStack Config. The Master Plugin includes a variety of settings you can adjust to improve performance, which are particularly useful for large or busy environments.
Check the RaaS configuration file As part of the post-installation process, consider reviewing your RaaS configurations. RaaS, which stands for Returner as a Service, is the central component in SaltStack Config. RaaS provides RPC endpoints to receive management commands from the SaltStack Config user interface, as well as RPC control endpoints to interface with connected Salt masters. The RaaS configuration settings are in the
/etc/raas/raas configuration file on the RaaS node.
Log in for the first time and change default credentials After completing the previous post-installation steps, you can log in to the SaltStack Config for the first time. After you first login, you should change the root password and secure your RaaS credentials.
Accept the Salt master key and back up data After you’ve successfully logged in for the first time, you need to complete some important tasks in the SaltStack Config user interface. You need to accept the Salt master's key, remove the pillar top file, and back up critical data. You can also try some sample content to enable more accurate minion presence detection and to test the overall system's functionality.
Set up SSL certificates As part of the post-installation process, you might want to set up your Secure Sockets Layer (SSL) certificates. Setting up SSL certificates is optional when installing SaltStack Config, but recommended.
Set up Single Sign-On (SSO) SaltStack Config integrates with third-party identity and access management solutions to enable users to login to the SaltStack Config user interface.
Configure SaltStack SecOps This post-installation step is optional, but is required for customers who have purchased a vRealize Automation SaltStack SecOps license. SaltStack SecOps is add-on for SaltStack Config that provides two security libraries. Both content libraries update regularly as security standards change. If you are a SaltStack SecOps customer, you need to configure these security libraries to download (or ingest) new content automatically as security standards change.
Create a SaltStack Config integration with vRealize Automation You can configure a SaltStack Config integration to access the SaltStack Config service and use SaltStack Config objects and actions in vRealize Automation.
Extend your Salt infrastructure After you have installed and integrated the SaltStack Config service, you also need to install, run, and register the Salt minion service on any nodes that you intend to manage using SaltStack Config. You can deploy the Salt minion service to your nodes using either vRealize Automation cloud templates or by installing the service through Secure Shell (SSH).