Ubuntu Version: Core 24
Desktop Environment (if applicable): n/a
Problem Description:
We are struggling with how to manage/configure a fleet of ucore systems. I have tried to write snaps that allow us to add/modify/change configuration files for things like docker (daemon.json) and fluent-bit, but have run into security issues. What is the solution? I understand that ucore is designed for security, which is why we choose it. However, we have to have the ability to modify and change things like configuration files that are not our snaps.
We have run into other issues, which @ogra offered solutions to and are using snapd now to work with snaps. However, snapd does not offer a way to work with files that belong to that snap.
Currently, we just ssh into the box and run scripts for the initial install, but this is not going to be feasible once we are out of pilot. These numbers will be too great to manage on a one by one basis like this. Also, there will be changes that will be necessary that will need to be deployed to all machines.
I know some of this can be handled with our own brand store, which we will consider after pilot. Right now I just have to get past these issues, so we can make a case for ucore and a store.
We are also testing and experimenting with Landscape. Hopefully, Landscape can offer solutions to these problems, but I have not tested it yet.
Relevant System Information: Core24, ubuntu-frame, wpe-webkit-mir-kiosk
Screenshots or Error Messages: n/a
What I’ve Tried: n/a