Table of contents

Removing a user from Puppet

Removing a user from our infrastructure via Puppet is a 2 change process that requires a deploy in the middle. The first change ensures that when puppet runs the users home directory is removed, the second change removes the user from puppet itself. If the user is just removed from puppet their files will remain on our servers forever more.

  1. First find the user manifest in: modules/users/manifests.
  2. Add an entry to the govuk_user class of ensure => absent,. Here is an example.
  3. Once this has been raised as a PR and merged, deploy puppet to all environments.
  4. Create another PR for puppet that:
  5. Create a PR in GOV.UK secrets that:
  6. Once these have been merged, deploy puppet again to all environments.
This page was last reviewed . It needs to be reviewed again by the page owner #govuk-2ndline.