---
name: orchestrator-host-hetzner
description: The cc-ci orchestrator runs on a Hetzner cpx22; key host facts + the git-identity gotcha
metadata: 
  node_type: memory
  type: project
  originSessionId: cd772f12-1978-47c3-894b-0ebbe0d2987f
---

The cc-ci orchestrator (loops + watchdog + this session) runs on a **Hetzner cpx22** as of
2026-05-31, replacing the Incus VM (100.116.55.106).

- Hetzner server **134487234**, public **168.119.126.100**, tailnet **cc-ci-orchestrator-1** @
  **100.84.190.30**. Flake host **cc-ci-orchestrator-hetzner**.
- Rebuild: `sudo nixos-rebuild switch --flake .#cc-ci-orchestrator-hetzner` from `/srv/cc-ci-orch`
  (`/srv/cc-ci` is a symlink to it). The Bash tool runs as user **loops** (uid 1000, passwordless
  sudo) — plain `nixos-rebuild switch` fails on the profile symlink; use `sudo`.
- Reboot-resilience: `cc-ci-loops.service` is **enabled** (wantedBy multi-user.target); ExecStartPre
  `reboot-log.sh` auto-logs reboots to REBOOTS.md. Its `script` runs `launch.sh start`, which
  **stops+restarts the loops** — so any rebuild that (re)starts the unit bounces the loops (they
  re-orient from git; harmless but noticeable).
- **Git-identity gotcha:** the box had no git user.name/email configured; commits fail with "Author
  identity unknown". Set per-repo to match prior commits: `autonomic-bot
  <autonomic-bot@git.autonomic.zone>`.

Full record: `cc-ci-plan/plan-orchestrator-hetzner-migration.md`.