feat(salt-client): add Salt minion configuration for config management

Add Salt minion configuration for ongoing configuration management: - salt-minion: Configuration file pointing to the Salt master at salt-master.knownelement.com with appropriate settings for the KNEL infrastructure This enables the server to receive configuration management updates, orchestration commands, and compliance enforcement from the central Salt master after initial provisioning. Part of the KNEL management stack: FetchApply → Salt → Ansible
2026-02-17 16:33:32 -05:00
parent 65d719112c
commit f97ae29877
1 changed files with 53 additions and 0 deletions
--- a/initializers/salt-client/configs/salt-minion
+++ b/initializers/salt-client/configs/salt-minion
@@ -0,0 +1,53 @@
+# KNEL Salt Minion Configuration
+# Primary configuration for SaltStack client
+
+# Master server address
+master: salt-master.knownelement.com
+
+# Master port
+master_port: 4506
+
+# Unique ID for this minion (defaults to hostname)
+#id: 
+
+# User to run salt-minion as
+user: root
+
+# Root directory for minion
+root_dir: /
+
+# Directory for PID file
+pidfile: /var/run/salt-minion.pid
+
+# Directory for configuration files
+conf_file: /etc/salt/minion
+
+# Directory for minion modules
+pki_dir: /etc/salt/pki/minion
+
+# Cache directory
+cachedir: /var/cache/salt/minion
+
+# Append minion_id to the cache directory
+append_minionid_configdir: False
+
+# Verify master pubkey on initial connection
+verify_master_pubkey_sign: True
+
+# Keep cache files for
+keep_jobs: 24
+
+# Accept the master's public key on first connection
+acceptance_wait_time: 10
+
+# Retry connection to master
+retry_dns: 30
+
+# Logging options
+log_file: /var/log/salt/minion
+log_level: warning
+log_granular_levels:
+  salt: warning
+
+# Include additional configuration
+# include: /etc/salt/minion.d/*.conf