Chef

Question 1

What is idempotent ?

Answer 1

That is: “multiple applications of the same action do not have side effects on the system state.” A simple example of an idempotent operation is mkdir -p:
mkdir -p /var/lib/statedir/myapp
No matter how many times we run this command, it will result in that tree being created. Another way of stating this about idempotent operations is, “running the tool over and over doesn’t change the system after the first time.”
Now to contrast that with convergence.

Question 2

What is the difference between integration testing with Test kitchen and unit testing with chefspec ?

Answer 2

Chefspec tests are written in RSpec while Test Kitchen and unit testing with ChefSpec.
Integration tests are performed inside of a running system, such as virtual machine, while unit tests are executed in memory.
Unit tests focus on testing the Resource Collection while integration test check the state of a converged node.

Question 3

Test Kitchen can be used to write expectations about what will happen when a cookbook is deployed to what kind of system ?

Answer 3

A bare-metal machine
A cloud instance
A virtual instance
Any of the above

Question 4

The Chef Development Kit (ChefDK) comes with a baseline set of tooling designed to aid in the development and testing of chef code/ How can the ChefDK’s tooling be expanded ?

Answer 4

Ruby Gems can be installed into the ChefDK with the chef gem command.
Knife plugins can extend the knife tooling to interact with other cloud providers.
Ohai plugins and hints can extend the information the ohai tool collects.
All of the above.

Question 5

What is convergent ?

Answer 5

Generically, to converge means to bring [people or] things together. In configuration management, convergence means to bring the system state in line with a defined policy. That is, changes are made on the system only if they need to be made. A simple example of a convergent operation is:
if [ ! -d /var/lib/statedir/myapp ]; then
mkdir -p /var/lib/statedir/myapp
fi
This is convergent because we’re only executing the mkdir command if the desired directory does not exist. We also call this a “test and repair” operation.

Question 6

What does the Supermarket do?

Answer 6

Acts as an artifact repository for Chef cookbooks and tools.

Both public and private repositories for Chef cookbooks and tools utilize Supermarket.

Question 7

Which of these tools is not part of the Chef Development Kit?

Ruby
Kitchen
The Chef Server
The Chef Client

Answer 7

The Chef Server

Question 8

What is the role of Test Kitchen (or just Kitchen) in automated testing?

Answer 8

To provision platforms and run automated test suites in isolation. A separate testing framework such as InSpec, ServerSpec, or Bats is used to write the test expectations. Kitchen can work with many testing frameworks.

Question 9

Which of these commands would you run to see a list of nodes?
kitchen node list
chef node list
None of these choices
knife node list

Answer 9

knife node list

Question 10

Which of these are valid ways to create a chef-repo to hold cookbooks? (Choose all that apply)

Using the chef generate repo command.
Using the chef-server-ctl generate repo command.
Using the knife generate repo command.
By generating a Chef repo “starter kit” from the Chef Server.

Answer 10

Using the chef generate repo command.

By generating a Chef repo “starter kit” from the Chef Server.

Question 11

What is the name of the utility that provides a web user interface for a Chef Server?

Answer 11

Chef Manage

Question 12

Which knife command can be used to register a physical server as a node with the Chef Server?
None of these choices.

The chef bootstrap command.
The knife node create command.

Answer 12

The knife bootstrap command.

Question 13

What is the name of the approach used by chef-client to know what configuration to apply?
test-and-repair
converge-and-verify
download-and-run

Answer 13

test-and-repair

Question 14

Which of these is a rule regarding a Chef Server organization’s name? (Note: the name field, not the full_name field) ?

It must contain one number and one letter.
It can only contain lowercase letters, digits, hyphens, and underscores.
It must be at least five characters long.
It must start with a lowercase letter.

Answer 14

It can only contain lowercase letters, digits, hyphens, and underscores.

Question 15

Default Resource Actions

Answer 15

:install - Default, installs the package.
:nothing - Does nothing until the resource is notified.
:purge - Debian specific, use :remove otherwise. Removes package and configuration.
:reconfig - Reconfigure the package. Requires a response file.
:remove - Removes the package.
:upgrade - Install and/or ensure that the package is the latest version.

Question 16

How many Attribute types are there in chef ? what are they ?

Answer 16

Chef has 6 different attributes such as,

default - Attributes automatically set during the chef-client run.
force_default - Attribute type guaranteed to override default values. Set in cookbooks.
normal - Attribute type that persists with the node object at the end of a chef-client run.
override - Attribute type reset at the start of a chef-client run. Used in cookbooks, roles, and environments. Limit use in cookbooks unless it can't be avoided.
force_override - Attribute type used by cookbooks to have precedence over override attributes.
automatic - Attribute type determined by Ohai at the start of the chef-client run. Can't be overridden.

Question 17

How can we define the attributes ?

Answer 17

Attributes are defined by:

    The state of the node itself
    Cookbooks (in attribute files and/or recipes)
    Roles
    Environments
    Policyfiles

Question 18

How to include a recipe into another recipe ?

Answer 18

include_recipe ‘cookbook::recipe’

Example:
include_recipe ‘base1::install’
include_recipe ‘base2::configure’

Question 19

What indexes are available for chef search ?

Answer 19

Clients
Nodes
Environments
Roles
Databags(searchable individual)

Question 20

What type of items can a run-list contains ?

Answer 20

Roles and Recipes

Question 21

Where can attributes be set ?

Answer 21

Automatically(by ohai) and in recipes, nodes, roles and environments.

Question 22

What chef package runs on nodes managed by chef to pull updated configuration ?

Answer 22

The chef-client

Question 23

What does an environment consist of ?

Answer 23

A name, optional description, and optional list of cookbook versions.

Question 24

What chef package will you use on your workstation ?

Answer 24

Chef DK Kit

Question 25

What chef CLI command will create a new cookbook ?

Answer 25

chef generate cookbook EX: chef generate cookbook /home/karthi/chef-repo/cookbooks/base

Question 26

What does Test kitchen do ?

Answer 26

Test kitchen provides a test harness for running integration tests for configuration policies.

Question 27

What is a cookbook ?

Answer 27

A cookbook is a collection of useful resources, recipes, and supporting files that can be complete a particular scenario.

Question 28

What does kitchen do ?

Answer 28

Kitchen creates and provisions one or more nodes, configures them, runs the integration test suites, and deletes the node.

Question 29

True or False. Chef configuration is written in Ruby

Answer 29

True. We have access to the full Ruby language when working with chef

Question 30

How do you undo what a resource has already done ?

Answer 30

The undo configuration caused by a resource, you will need to use a different resource or different action on the same resource that has the opposite effect

Question 31

What does 'chef generate repo' do?

Answer 31

It creates a chef repository to hold on chef configuration.

Question 32

What tools can we use to ensure we're following chef's style guide and best practices ?

Answer 32

'foodcritic' and 'cookstyle' utilities allow us to lint our code.

Question 33

Does chef use a push or pull based approach to deploy configuration changes ?

Answer 33

Pull based

Question 34

What does it mean to write 'declarative' configuration ?

Answer 34

Declarative configuration specifies the desired end state, but not how to get there.

Question 35

True or False. Integration tests are more low level than unit tests ?

Answer 35

False. Unit tests test the cookbooks at a lower level then integration tests.

Question 36

What action is shared all resources ?

Answer 36

The ':nothing' action.

Question 37

Does chef use a declarative or imperative approach to configuration ?

Answer 37

Declarative, although you can write imperative chef.

Question 38

What plugin provides the chef server with a web UI ?

Answer 38

Chef Manage

Question 39

What chef package stores the configuration of nodes ?

Answer 39

The Chef Server

Question 40

How does Chefspec unit testing work ?

Answer 40

Chefspec creates a virtual node object that can be customized and calculates what would be run on the node.

Question 41

True or False. We should use Wrapper cookbooks

Answer 41

True

Question 42

True or False. Chef only does what it is told to do.

Answer 42

True, the only thing that causes chef to make a change is explicit resource action

Question 43

What 'knife' command is used to push artifacts to the chef server ?

Answer 43

The 'knife upload' command.

Question 44

True or False. Habitat is used by chef automate by default

Answer 44

False. You can choose to use habitat in a project's workflow, but it is not used by default.

Question 45

How does chef Inspec communicates with remote machines ?

Answer 45

using SSH or WinRM

Question 46

What does Chef DK includes ?

Answer 46

Everything needed to develop and test chef cookbook. It includes, - ruby - Berkshelf - chef - chef-client - kitchen - foodcritic - chefspec

Question 47

In what ways can a chef-repo be generated ?

Answer 47

1. Using 'chef generate repo' OR | 2. Downloading a chef-repo starter kit from the chef manage UI

Question 48

True or False. Inspec can test on remote nodes.

Answer 48

True

Question 49

What methods provide access to data bags from within recipes ?

Answer 49

The 'data_bag', 'data_bag_item' and 'search' methods.

Question 50

What chef product handles application automation?

Answer 50

Habitat

Question 51

What does a 'knife bootstrap' do ?

Answer 51

'knife bootstrap' prepares a server to be a node of a chef server

Question 52

True or False. A push-based configuration management approach requires the node to have an agent installed ?

Answer 52

False. The pull-based method needs the agent installed on the node.

Question 53

True or False. Habitat can be deployed in a container based infrastructure ?

Answer 53

True

Question 54

Data bags stores what type of data ?

Answer 54

Json data

Question 55

What is command line tool use to manage a chef server ?

Answer 55

chef-server-ctl

Question 56

True or False. Chef server organization names cannot include uppercase letters

Answer 56

True. Organization can only include lower case letters, numbers, hyphens and underscores.

Question 57

What testing framework will you use for integration testing

Answer 57

Inspec

Question 58

What are the three main ideas from the preferred chef development workflow ?

Answer 58

1. Source control management. 2. Test-Driven development 3. Wrapper cookbooks

Question 59

What recipe do all generated cookbooks have ?

Answer 59

The default recipe

Question 60

What happens when a chef-client run occurs ?

Answer 60

1. Get configuration data - Read information from client.rb file and Ohai attributes. 2. Authenticate w/ Chef server - Utilizes RSA key & node name to authenticate with Chef server. Will generate a new RSA key if this is the first connection. 3. Get/rebuild the node object - Pull node object from Chef server if this isn’t the first chef-client run. After the pull, the node object is rebuilt based on the node’s current state. 4. Expand the run-list - Compiles the list of roles and recipes to be applied. 5. Synchronize cookbooks - Request and download all of the files from cookbooks on the Chef server that are necessary to converge the run list and are different from the files already existing on the node. 6. Reset node attributes - Rebuild the attributes on the node object. 7. Compile the resource collection - Load the necessary Ruby code to converge the run-list. 8. Converge the node - Execute the run-list. 9. Update the node object, process exception & report handlers - Update the node object on the Chef server after the chef-client run finishes successfully. Also executing the exception and report handlers in the proper order. 10. Stop, wait for the next run - The chef-client waits until the next time it is executed.

Question 61

What are some properties of the service resource

Answer 61

``` ignore_failure init_command notifies options pattern priority reload_command restart_command retries retry_delay service-name start_command status_command subscribes supports timeout ```

Question 62

What are the timers of the 'subscribes' service ?

Answer 62

:before :delayed :immediate or :immediately

Question 63

What are the 4 components of a resource?

Answer 63

a type, a name, one (or more) properties (with values), and one (or more) actions

Question 64

What are guards used for

Answer 64

A guard property can be used to evaluate the state of a node during the execution phase of the chef-client run. Based on the results of this evaluation, a guard property is then used to tell the chef-client if it should continue executing a resource

Question 65

What are the actions of the 'service' resource?

Answer 65

``` :disable :enable :nothing :reload :restart :start :stop ```