Red Hat Summit3.7. Supported Image Customizations
A number of image customizations are supported in blueprints. In order to make use of these options, you need to initially configure them in the blueprint and then use the command push to import the modified blueprint to Image Builder.
Note
These customizations are not currently supported in the accompanying `cockpit-composer` GUI.
- Set the image host name
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [customizations] hostname = "baseimage"
[customizations] hostname = "baseimage"- User specifications for the resulting system image
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [[customizations.user]] name = "USER-NAME" description = "USER-DESCRIPTION" password = "PASSWORD-HASH" key = "PUBLIC-SSH-KEY" home = /home"/USER-NAME/" shell = "/usr/bin/bash" groups = ["users", "wheel"] uid = NUMBER gid = NUMBER
[[customizations.user]] name = "USER-NAME" description = "USER-DESCRIPTION" password = "PASSWORD-HASH" key = "PUBLIC-SSH-KEY" home = /home"/USER-NAME/" shell = "/usr/bin/bash" groups = ["users", "wheel"] uid = NUMBER gid = NUMBER
Only the user name is required, you can leave out any other lines.
Replace PASSWORD-HASH with the actual password hash. To generate the hash, use a command such as:
python3 -c 'import crypt,getpass;pw=getpass.getpass();print(crypt.crypt(pw) if (pw==getpass.getpass("Confirm: ")) else exit())'
$ python3 -c 'import crypt,getpass;pw=getpass.getpass();print(crypt.crypt(pw) if (pw==getpass.getpass("Confirm: ")) else exit())'Important
To generate the hash, you must have the
python3 package on your system. Use the following command to install the package:
yum install python3
# yum install python3
Replace PUBLIC-SSH-KEY with the actual public key.
Repeat this block for every user you want to include.
- Group specifications for the resulting system image
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [[customizations.group]] name = "GROUP-NAME" gid = NUMBER
[[customizations.group]] name = "GROUP-NAME" gid = NUMBERRepeat this block for every group you want to include.- Set an existing user's ssh key
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [[customizations.sshkey]] user = "root" key = "PUBLIC-SSH-KEY"
[[customizations.sshkey]] user = "root" key = "PUBLIC-SSH-KEY"
Note
This option is only applicable for existing users. To create a user and set an ssh key, use the User specifications for the resulting system image customization.
- Append a kernel boot parameter option to the defaults
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [[customizations.kernel]] append = "KERNEL-OPTION"
[[customizations.kernel]] append = "KERNEL-OPTION"
- Set the image host name
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [customizations] hostname = "BASE-IMAGE"
[customizations] hostname = "BASE-IMAGE"- Add a group for the resulting system image
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [[customizations.group]] name = "USER-NAME" gid = NUMBER
[[customizations.group]] name = "USER-NAME" gid = NUMBEROnly the name is required and GID is optional.- Set the timezone and the Network Time Protocol (NTP) servers for the resulting system image
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [customizations.timezone] timezone = "TIMEZONE" ntpservers = NTP-SERVER
[customizations.timezone] timezone = "TIMEZONE" ntpservers = NTP-SERVERIf you do not set a timezone, the system uses Universal Time, Coordinated (UTC) as default. Setting NTP servers is optional.- Set the locale settings for the resulting system image
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [customizations.locale] language = "[LANGUAGE]" keyboard = "KEYBOARD"
[customizations.locale] language = "[LANGUAGE]" keyboard = "KEYBOARD"Setting both language and keyboard options is mandatory. You can add multiple languages. The first language you add will be the primary language and the other languages will be secondary.- Set the firewall for the resulting system image
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [customizations.firewall] port = "[PORTS]"
[customizations.firewall] port = "[PORTS]"You can use the numeric ports, or theirs names from the `/etc/services` file to enable or disable lists.- Set which services to enable during the boot time
Copy to Clipboard Copied! Toggle word wrap Toggle overflow [customizations.services] enabled = "[SERVICES]" disabled = "[SERVICES]"
[customizations.services] enabled = "[SERVICES]" disabled = "[SERVICES]"You can control which services to enable during the boot time. Some image types already have services enabled or disabled so that the image works correctly and this setup cannot be overridden.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}