If this is a busy mail host, you might want to stop exim before proceeding
although the config files should remain identical before and after.
+Try this once if you're nervous:
+
+ : ::client:: && puppet agent -t --pluginsync --noop
+
+It will tell you what would have changed without actually doing it.
+
Then run (this will change the configs in /etc):
: ::client:: && puppet agent -t --pluginsync
will result in 1000s of files changed.
You may need to run samhain update after getting puppet going.
+The puppet repository is public, but we sometimes need to keep passwords
+in puppet. There are many ways to do this - hiera-gpg, ENC, etc. We've
+settled on a fairly simple one. Log into handel, create a new manifest
+in the relevant module (call is something like "params.pp"). You can add
+passwords to this file. To stop git complaining on push, make sure you
+update .gitignore for the new file. Now you can import this file where
+you need passwords and use them.
+
# vim:textwidth=72 sw=8 ts=8 et