SaltStack Review

We can deploy and redeploy code and platform. We can also maintain system compliance.

What is most valuable?

  • Tool for Infrastructure as Code (IAC)
  • Allows you to preserve the status of the target machine
  • Allows you to version a target machine as a SaltStack recipe/status “code”
  • Versions can be stored and replicated
  • Offers immutability, versioning, and state reuse

How has it helped my organization?

We can do the following from the same tool:

  • Deploy code
  • Redeploy code and platform
  • Maintain system compliance

What needs improvement?

  • Security
  • Privilege separation
  • Multi-user capability
  • Public audit: There is no public audit of the code. Master/minion connections are subject to hijacking, privilege escalation, and/or information leaks. There is no official statement or study available about this.
  • Installations: The installations sometimes need tuning to be secure, as some parts need special privileges.

  • There’s no option for multi-user or RBAC. Every user can do everything.

For how long have I used the solution?

I have been using the solution for two years.

What do I think about the stability of the solution?

We encountered a stability issue related to the correct master dimensioning.

What do I think about the scalability of the solution?

We have not encountered any scalability issues.

How is customer service and technical support?

We have not used the technical support.

Which solutions did we use previously?

I am not aware of any previous solutions.

How was the initial setup?

The setup was smooth. We were already acquainted with this kind of tool.

What's my experience with pricing, setup cost, and licensing?

We have no specific comments regarding this issue.

Which other solutions did I evaluate?

We evaluated Chef, Ansible, and Puppet.

What other advice do I have?

Adopt it in full, including the API.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Sign Up with Email