Upcoming Forge IP Address Change

On Monday, October 26th, 2020 we will be updating the forge.puppet.com and forgeapi.puppet.com DNS records (as well as the legacy forge.puppetlabs.com and forgeapi.puppetlabs.com records) to point to a new IPv4 address. This change is being made as part of ongoing work to improve the performance and reliability of the Forge website and API service.

The new IP address is 192.69.65.71. This address is already functional and you can configure Puppet to use it via the temporary hostname forgeapi-new.puppet.com. We recommend only using this hostname only for testing purposes, please keep your primary configurations pointed to the default hostname.

We realize that some users have to make firewall exceptions so that their clients can access the Puppet Forge which is why we are pre-announcing this change. To help facilitate a smooth transition, the Forge website and API service will continue to be available on the old IP address until at least Monday, November 9th, 2020.

Users that need to access Forge via the old IP may configure Puppet to use the temporary hostname forgeapi-old.puppet.com. Note that this DNS record will be updated to point to the new IP once the old IP is deactivated. Please be sure to make any necessary updates to your firewall configurations before November 9th, 2020.

The Forge API will continue to be available via IPv6 (as well as IPv4 but on a dynamic set of addresses) through the alternate hostname forgeapi-cdn.puppet.com with no changes.

This is the first time in approximately 5 years that we have changed the Forge IP address.

If you have any questions or concerns, please email us at forge@puppet.com. Thank you.

New password complexity requirements

We have recently deployed a couple of changes to improve the password security of the Forge website.

First, we now require all passwords to meet or exceed a certain level of complexity, as defined by the zxcvbn algorithm. We do not have specific rules about characters used, capitalization patterns, etc. but the algorithm takes a variety of factors into account when determining password complexity and will even provide suggestions as to how you can improve a password judged to be not complex enough. You can read more about the zxcvbn algorithm in this blog post by Dropbox.

For passwords that meet our complexity requirements, we now additionally check them against a database of passwords previously exposed in data breaches from other websites or services. It is already a best practice to create a unique password for each website or service where you have an account but this change ensures users don't re-use a password that is at much greater risk of being guessed by a malicious actor. To learn more, visit haveibeenpwned.com.

These new checks and requirements apply to all newly created user accounts as well as existing users who choose to update their password. At this time we are not requiring existing users to update their passwords but may require that in the future.

A more responsive Forge

Our redesigned homepage now scales with your browser window! You might not be installing Forge modules from your phone or tablet, but finding the right module and browsing documentation should be easy at all screen sizes, on any device.

Look for more responsive layout updates soon as we continue to roll out our redesign. Let us know what you think - your feedback is always welcome in our community Slack chat!

Classify nodes with your ServiceNow CMDB

Does your team use ServiceNow? Learn how to use ServiceNow's Configuration Management Database (CMDB) to classify your Puppet nodes in our latest how-to guide. This article shows you how to use our ServiceNow CMDB integration module to leverage your ServiceNow CMDB as a trusted external data source for Puppet Enterprise.

Do you have feedback on this guide or ideas for future guides you'd like to see? Please let us know in the #forge-modules channel in our community Slack!

Provision nodes with vRA 7 and Puppet

Learn how to provision nodes using the Puppet Plug-in for VMware vRealize Automation (vRA) in our latest how-to guide. This guide covers everything from connecting Puppet and vRA 7 to designing vRA blueprints using Puppet properties.

If you have any feedback on this guide or ideas for future guides you'd like to see, let us know in the #forge-modules channel in our community Slack!

Getting started with PE & Splunk

Our new how-to guide will get you up and running with PE and Splunk using the Splunk HEC module. Once installed, you'll be able to view and analyze data from Puppet in Splunk with the Puppet Report Viewer.

Give it a try and let us know what you think in the #forge-modules channel in our community Slack!

Redesigned Forge home page!

Today, we're excited to introduce a redesigned Forge home page!

The new home page showcases the most significant change to the Forge's design since since our last refresh in 2018.

We hope you'll enjoy exploring Featured modules (hand-picked by the Forge team!), seeing today's most Recently updated modules, and perusing our growing collection of how-to articles.

What's next? Over the next few months, we'll be rolling out the new look to the rest of the Forge, along with some new features we think you will love.

Do you have a suggestion or comment? Please help us improve the Forge experience by giving your feedback in our community slack, on Twitter via @puppetforge, or emailing us at forge@puppet.com.

Resolved missing module detail content

We recently resolved an issue that was causing the "Compatibility" and "Scores" tab content for modules to not render correctly.

The root cause was a recent update to one of the Javascript libraries that we use and our not realizing the update wasn't fully backwards-compatible with the previous version. We have now updated all the relevant code to be compatible with the new version. Please let us know in our community slack or via email at forge@puppet.com if you continue to see any problems.

New IPv6-enabled hostname: forgeapi-cdn.puppet.com

We have a new, IPv6-enabled hostname for the Forge API now in beta and ready for you to try. It’s available at https://forgeapi-cdn.puppet.com and you can configure a few common tools to use this hostname as follows:

For Puppet Enterprise users, in r10k or Code Manager, specify forge_settings in Hiera:

pe_r10k::forge_settings:
  baseurl: 'https://forgeapi-cdn.puppet.com'

or

puppet_enterprise::master::code_manager::forge_settings: 
  baseurl: 'https://forgeapi-cdn.puppet.com'


If you are an open source Puppet user using r10k, you'll need to edit your r10k.yaml directly or set a param for the open source r10k module:

forge:
  baseurl: 'https://forgeapi-cdn.puppet.com'

or

$forge_settings = {
  'baseurl' => 'https://forgeapi-cdn.puppet.com',
}


In Bolt, set a baseurl for the Forge in bolt.yaml:

puppetfile:
  forge:
    baseurl: 'https://forgeapi-cdn.puppet.com'

If you are interested, please give it a try and if you run into any problems let us know in our community slack or email us at forge@puppet.com.

New Oracle Database 19c how-to guide

Learn how you can easily configure and deploy Oracle Database 19c using Puppet with tools from Enterprise Modules in our new how-to guide!

If you're managing other Oracle services or software, we encourage you to check out more of the tools available from Enterprise Modules on the Forge, and visit their site for more details.