puppet cert clean unrevokes old revoked certs?
67 views
Skip to first unread message
Kostis Fardelas
Sep 17, 2015, 8:27:59 AM9/17/15
to Puppet Users
Hi,
I revoke a host cert:
puppet cert --revoke host1.example.com
I verify that the host1 cert was added to the crl, restarted puppetmaster and the client is indeed banned.
I clean another's host cert:
puppet cert --clean host2.example.com
I verify that host1 cert was REMOVED from crl and host2 cert was added to it.
Now host1 can run puppet and host2 cannot. Does this sound like a bug to you or a misconfiguration?
Regards,
Kostis
I revoke a host cert:
puppet cert --revoke host1.example.com
I verify that the host1 cert was added to the crl, restarted puppetmaster and the client is indeed banned.
I clean another's host cert:
puppet cert --clean host2.example.com
I verify that host1 cert was REMOVED from crl and host2 cert was added to it.
Now host1 can run puppet and host2 cannot. Does this sound like a bug to you or a misconfiguration?
Regards,
Kostis
jcbollinger
Sep 18, 2015, 8:54:44 AM9/18/15
to Puppet Users
John
Reply all
Reply to author
Forward
0 new messages