update README
change directory naming
This commit is contained in:
parent
0ab4ba65c6
commit
9c59a20b54
15 changed files with 11 additions and 11 deletions
0
secrets/.gitignore → .gitignore
vendored
0
secrets/.gitignore → .gitignore
vendored
15
README.md
15
README.md
|
|
@ -3,7 +3,14 @@
|
||||||
Nix definitions to configure our physical servers.
|
Nix definitions to configure our physical servers.
|
||||||
Currently, only one physical server (named jefke) is implemented.
|
Currently, only one physical server (named jefke) is implemented.
|
||||||
|
|
||||||
To deploy:
|
## Deployment
|
||||||
```
|
|
||||||
nixos-rebuild switch -j auto --target-host root@jefke.hyp --flake ".#jefke"
|
### Prerequisites
|
||||||
```
|
|
||||||
|
Before a NixOS definition can be deployed, some prerequite preparational steps must be performed.
|
||||||
|
|
||||||
|
1. Manually install NixOS on the physical machine. This could potentially be automated in the future with [nixos-anywhere](https://github.com/nix-community/nixos-anywhere), but for now this is a manual process.
|
||||||
|
2. Enable SSH and install authorized keys.
|
||||||
|
3. Ensure Python3 is installed for Ansible.
|
||||||
|
4. Run Ansible playbook which deploys secrets `ansible-playbook deploy_secrets.yml`.
|
||||||
|
5. Deploy the NixOS definition: `nixos-rebuild switch -j auto --target-host root@jefke.hyp --flake ".#jefke"`.
|
||||||
|
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
||||||
We can for now keep using Ansible vault to deploy secrets.
|
|
||||||
The steps for setting up a hypervisor will thus become:
|
|
||||||
1. Manually install NixOS
|
|
||||||
2. Configure SSH and install authorized keys
|
|
||||||
3. Ensure python3 is present on the system
|
|
||||||
4. Run Ansible script to copy secrets
|
|
||||||
5. Run Nix to configure everything else
|
|
||||||
Loading…
Reference in a new issue