RH134 - ch12s03

Bookmark this page

Automate Installation with Kickstart

Objectives

Explain Kickstart concepts and architecture, create a Kickstart file with the Kickstart Generator website, modify an existing Kickstart file with a text editor and check its syntax with ksvalidator, publish a Kickstart file to the installer, and install Kickstart on the network.

Introduction to Kickstart

The Kickstart feature of Red Hat Enterprise Linux automates system installations. You can use Kickstart text files to configure disk partitioning, network interfaces, package selection, and customize the installation. The Anaconda installer uses Kickstart files for a complete installation without user interaction. The Kickstart feature is similar and uses an unattended installation answer file for Microsoft Windows.

Kickstart files begin with a list of commands that define how to install the target machine. The installer ignores comment lines, which start with the number sign (#) character. Additional sections each begin with a specific directive that starts with the percentage sign (%) character. The %end directive marks the end of each section.

The %packages section specifies which software to include on installation. Specify individual packages by name, without versions. The at sign (@) character denotes package groups (either by group or ID), and the @^ characters denote environment groups (groups of package groups). Lastly, use the @module:stream/profile syntax to denote module streams.

Groups have mandatory, default, and optional components. Normally, Kickstart installs mandatory and default components. To exclude a package or a package group from the installation, precede it with a hyphen (-) character. Excluded packages or package groups might still install if they are mandatory dependencies of other requested packages.

A Kickstart configuration file typically includes one or more %pre and %post sections, which contain scripts that further configure the system. The %pre scripts execute before any disk partitioning is done. Typically, you use %pre scripts to initialize a storage or network device that the remainder of the installation requires. The %post scripts execute after the initial installation is complete. Scripts within the %pre and %post sections can use any available interpreter on the system, including Bash or Python. Avoid the use of a %pre section, because any errors that occur within it might be difficult to diagnose.

Lastly, you can specify as many sections as you need, in any order. For example, you can have two %post sections, and they are interpreted in order of appearance.

Note

The RHEL Image Builder is an alternative installation method to Kickstart files. Rather than a text file that provides installation instructions, Image Builder creates an image with all the required system changes. The RHEL Image Builder can create images for public clouds such as Amazon Web Services and Microsoft Azure, or for private clouds such as OpenStack or VMware. See this section's references for more information about the RHEL Image Builder.

Installation Commands

The following Kickstart commands configure the installation source and method:

url: Specifies the URL that points to the installation media.

url --url="http://classroom.example.com/content/rhel9.0/x86_64/dvd/"

repo: Specifies where to find additional packages for installation. This option must point to a valid DNF repository.
```
repo --name="appstream" --baseurl=http://classroom.example.com/content/rhel9.0/x86_64/dvd/AppStream/
```
text: Forces a text mode installation.
vnc: Enables the VNC viewer so you can access the graphical installation remotely over VNC.
```
vnc --password=redhat
```

Device and Partition Commands

The following Kickstart commands configure devices and partitioning schemes:

clearpart: Removes partitions from the system before creating partitions.
```
clearpart --all --drives=vda,vdb
```
part: Specifies the size, format, and name of a partition. Required unless the autopart or mount commands are present.
```
part /home --fstype=ext4 --label=homes --size=4096 --maxsize=8192 --grow
```
autopart: Automatically creates a root partition, a swap partition, and an appropriate boot partition for the architecture. On large enough drives (50 GB+), this command also creates a /home partition.
ignoredisk: Prevents Anaconda from modifying disks, and is useful alongside the autopart command.
```
ignoredisk --drives=sdc
```
bootloader: Defines where to install the bootloader. Required.
```
bootloader --location=mbr --boot-drive=sda
```

volgroup, logvol: Creates LVM volume groups and logical volumes.

part pv.01 --size=8192
volgroup myvg pv.01
logvol / --vgname=myvg --fstype=xfs --size=2048 --name=rootvol --grow
logvol /var --vgname=myvg --fstype=xfs --size=4096 --name=varvol

zerombr: Initialize disks whose formatting is unrecognized.

Network Commands

The following Kickstart commands configure networking-related features:

network: Configures network information for the target system. Activates network devices in the installer environment.
```
network --device=eth0 --bootproto=dhcp
```
firewall: Defines the firewall configuration for the target system.
```
firewall --enabled --service=ssh,http
```

Location and Security Commands

The following Kickstart commands configure security, language, and region settings:

lang: Sets the language to use on the installed system. Required.
```
lang en_US
```
keyboard: Sets the system keyboard type. Required.
```
keyboard --vckeymap=us
```
timezone: Defines the time zone and whether the hardware clock uses UTC. Required.
```
timezone --utc Europe/Amsterdam
```
timesource: Enables or disables NTP. If you enable NTP, then you must specify NTP servers or pools.
```
timesource --ntp-server classroom.example.com
```
authselect: Sets up authentication options. Options that the authselect command recognizes are valid for this command. See authselect(8).

rootpw: Defines the initial root user password. Required.

rootpw --plaintext redhat
or
rootpw --iscrypted $6$KUnFfrTzO8jv.PiH$YlBbOtXBkWzoMuRfb0.SpbQ....XDR1UuchoMG1

selinux: Sets the SELinux mode for the installed system.
```
selinux --enforcing
```
services: Modifies the default set of services to run under the default systemd target.
```
services --disabled=network,iptables,ip6tables --enabled=NetworkManager,firewalld
```

group, user: Creates a local group or user on the system.

group --name=admins --gid=10001
user --name=jdoe --gecos="John Doe" --groups=admins

Miscellaneous Commands

The following Kickstart commands configure logging the host power state on completion:

logging: This command defines how Anaconda handles logging during the installation.
```
logging --host=loghost.example.com
```
firstboot: If enabled, then the Set up Agent starts the first time that the system boots. This command requires the initial-setup package.
```
firstboot --disabled
```
reboot, poweroff, halt: Specify the final action when the installation completes. The default setting is the halt option.

Note

Most Kickstart commands have multiple available options. Review the Kickstart Commands and Options guide in this section's references for more information.

Example Kickstart File

In the following example, the first part of the Kickstart file consists of the installation commands, such as disk partitioning and installation source.

#version=RHEL9

# Define system bootloader options
bootloader --append="console=ttyS0 console=ttyS0,115200n8 no_timer_check net.ifnames=0  crashkernel=auto" --location=mbr --timeout=1 --boot-drive=vda

# Clear and partition disks
clearpart --all --initlabel
ignoredisk --only-use=vda
zerombr
part / --fstype="xfs" --ondisk=vda --size=10000

# Define installation options
text
repo --name="appstream" --baseurl="http://classroom.example.com/content/rhel9.0/x86_64/dvd/AppStream/"
url --url="http://classroom.example.com/content/rhel9.0/x86_64/dvd/"

# Configure keyboard and language settings
keyboard --vckeymap=us
lang en_US

# Set a root password, authselect profile, and selinux policy
rootpw --plaintext redhat
authselect select sssd
selinux --enforcing
firstboot --disable

# Enable and disable system services
services --disabled="kdump,rhsmcertd" --enabled="sshd,rngd,chronyd"

# Configure the system timezone and NTP server
timezone America/New_York --utc
timesource --ntp-server classroom.example.com

The second part of a Kickstart file contains the %packages section, with details of which packages and package groups to install, and which packages not to install.

%packages

@core
chrony
cloud-init
dracut-config-generic
dracut-norescue
firewalld
grub2
kernel
rsync
tar
-plymouth

%end

The last part of the Kickstart file contains a %post installation script.

%post

echo "This system was deployed using Kickstart on $(date)" > /etc/motd

%end

You can also specify a Python script with the --interpreter option.

%post --interpreter="/usr/libexec/platform-python"

print("This line of text is printed with python")

%end

Note

In a Kickstart file, missing required values cause the installer to interactively prompt for an answer or to abort the installation entirely.

Kickstart Installation Steps

Use the following steps to automate the installation of Red Hat Enterprise Linux with the Kickstart feature:

Create a Kickstart file.
Publish the Kickstart file so that the Anaconda installer can access it.
Boot the Anaconda installer and point it to the Kickstart file.

Create a Kickstart File

You can use either of these methods to create a Kickstart file:

Use the Kickstart Generator website.
Use a text editor.

The Kickstart Generator site at https://access.redhat.com/labs/kickstartconfig presents dialog boxes for user inputs, and creates a Kickstart configuration file with the user's choices. Each dialog box corresponds to the configurable items in the Anaconda installer.

Figure 12.2: The Red Hat Customer Portal Kickstart Generator

Creating a Kickstart file from scratch is complex, so first try to edit an existing file. Every installation creates a /root/anaconda-ks.cfg file that contains the Kickstart directives that are used in the installation. This file is a good starting point to create a Kickstart file.

The ksvalidator utility checks for syntax errors in a Kickstart file. It ensures that keywords and options are correctly used, but it does not validate URL paths, individual packages, groups, nor any part of %post or %pre scripts. For example, if the firewall --disabled directive is misspelled, then the ksvalidator command might produce one of the following errors:

[user@host ~]$ ksvalidator /tmp/anaconda-ks.cfg
The following problem occurred on line 10 of the kickstart file:

Unknown command: frewall

[user@host ~]$ ksvalidator /tmp/anaconda-ks.cfg
The following problem occurred on line 10 of the kickstart file:

no such option: --dsabled

The ksverdiff utility displays syntax differences between different operating system versions. For example, the following command displays the Kickstart syntax changes between RHEL 8 and RHEL 9:

[user@host ~]$ ksverdiff -f RHEL8 -t RHEL9
The following commands were removed in RHEL9:
device deviceprobe dmraid install multipath

The following commands were deprecated in RHEL9:
autostep btrfs method

The following commands were added in RHEL9:
timesource
...output omitted...

The pykickstart package provides the ksvalidator and ksverdiff utilities.

Publish the Kickstart File to Anaconda

Provide the Kickstart file to the installer by placing it in one of these locations:

A network server that is available at installation time by using FTP, HTTP, or NFS.
An available USB disk or CD-ROM.
A local hard disk on the system.

The installer must access the Kickstart file to begin an automated installation. Usually, the file is made available via an FTP, web, or NFS server. Network servers help with Kickstart file maintenance, because changes can be made once, and then immediately be used for future installations.

By providing Kickstart files on USB or CD-ROM, is also convenient. The Kickstart file can be embedded in the boot media that starts the installation. However, when the Kickstart file is changed, you must generate new installation media.

Providing the Kickstart file on a local disk enables a quick rebuild of a system.

Boot Anaconda and Point to the Kickstart File

After a Kickstart method is chosen, the installer is told where to locate the Kickstart file by passing the inst.ks=LOCATION parameter to the installation kernel.

Consider the following examples:

inst.ks=http://server/dir/file
inst.ks=ftp://server/dir/file
inst.ks=nfs:server:/dir/file
inst.ks=hd:device:/dir/file
inst.ks=cdrom:device

Figure 12.3: Specifying the Kickstart file location during installation

For virtual machine installations by using the Virtual Machine Manager or virt-manager, the Kickstart URL can be specified in a box under URL Options. When installing physical machines, boot by using installation media, and press the Tab key to interrupt the boot process. Add an inst.ks=LOCATION parameter to the installation kernel.

References

For further information, refer to Kickstart Installation Basics chapter in Performing an Advanced RHEL Installation at https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html-single/performing_an_advanced_rhel_9_installation/index#performing_an_automated_installation_using_kickstart

For further information, refer to Kickstart Commands and Options Reference in Performing an Advanced RHEL Installation at https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html-single/performing_an_advanced_rhel_9_installation/index#kickstart-commands-and-options-reference_installing-rhel-as-an-experienced-user

For further information, refer to Composing a Customized RHEL System Image at https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html-single/composing_a_customized_rhel_system_image/index

Discuss Red Hat System Administration II

Go to community

Is It possible to reset root password when the system is on multi-user.target?

jennifer1987

27 lip 2023

Hi thereWell, i have a question, Is It possible to reset root password when the system is on multi-user.target? I was not be able to found a foro o some information related with this and another question that I have, If the grub menu dont show up, is it posible to reset the root password?

991

Red Hat System Administration II (RH134)

Haley_Ruccio

21 lip 2023

Build the skills to perform the key tasks needed to become a full-time Linux administratorRed Hat System Administration II (RH134) is the second part of the RHCSA training track for IT professionals who have already attended Red Hat System Administration I. The course goes deeper into core Linux system administration skills in storage configuration and management, installation and deployment of Red Hat Enterprise Linux, management of security features such as SELinux, control of recurring system tasks, management of the boot process and troubleshooting, basic system tuning, and command-line automation and productivity. This course assumes that students have attended Red Hat System Administration I (RH124).Experienced Linux administrators who seek rapid preparation for the RHCSA certification should instead start with RHCSA Rapid Track (RH199).This course is based on Red Hat Enterprise Linux 9.0.Course summaryInstall Red Hat Enterprise Linux using scalable methodsAccess security files, file systems, and networksExecute shell scripting and automation techniquesManage storage devices, logical volumes, and file systemsManage security and system accessControl the boot process and system servicesRun containersAudience for this courseThis course is geared toward Windows system administrators, network administrators, and other system administrators who are interested in supplementing current skills or backstopping other team members, in addition to Linux system administrators who are responsible for these tasks:Configuring, installing, upgrading, and maintaining Linux systems using established standards and proceduresProviding operational supportManaging systems for monitoring system performance and availabilityWriting and deploying scripts for task automation and system administrationRecommended trainingSuccessful completion of Red Hat System Administration I (RH124) is recommended.Experienced Linux administrators seeking to accelerate their path toward becoming a Red Hat Certified System Administrator should start with the RHCSA Rapid Track course (RH199).Take our free assessment to gauge whether this offering is the best fit for your skills.Technology considerationsThere are no special technology requirements.This course is not designed for bring your own device (BYOD).Internet access is not required, but is recommended to allow students to research and access Red Hat online resources.

Welcome to the Red Hat System Administration II (RH134) group in the Red Hat Learning Community!

Deanna

18 lip 2023

We are excited to launch a space dedicated to the Red Hat Training course Red Hat System Administration II! To gain the most value from this group - click the "Join Group" button in the upper right hand corner.We encourage group members to collaborate in this group to discuss topics, ask questions, share best practices and tips, provide course feedback, and share their accomplishments as it relates to RH134.Read more about Red Hat System Administration II here.

417

Revision: rh134-9.3-5fd2368

Click CREATE to build all of the virtual machines needed for the classroom lab environment. This may take several minutes to complete. Once created the environment can then be stopped and restarted to pause your experience.

If you DELETE your lab, you will remove all of the virtual machines in your classroom and lose all of your progress.