puppet certificate confusion
31 views
Skip to first unread message
Fabrice Bacchella
Jan 13, 2014, 7:28:48 AM1/13/14
to puppet...@googlegroups.com
I'm very confused about puppet certificate and ca management.
There is many puppet command to do the work :
ca Local Puppet Certificate Authority management.
cert Manage certificates and requests
certificate Provide access to the CA for certificate management.
certificate_request Manage certificate requests.
certificate_revocation_list Manage the list of revoked certificates.
Why so many ?
And worse :
USAGE: puppet ca <action>
This provides local management of the Puppet Certificate Authority.
OPTIONS:
--render-as FORMAT - The rendering format to use.
--verbose - Whether to log verbosely.
--debug - Whether to log debug information.
ACTIONS:
destroy undocumented action
fingerprint undocumented action
generate undocumented action
list List certificates and/or certificate requests.
print undocumented action
revoke undocumented action
sign undocumented action
verify undocumented action
There is a lot of old and deprecated informations in the web, many talking about puppetca which is dead.
When I look at http://docs.puppetlabs.com/puppet/, or http://docs.puppetlabs.com/puppet/latest/reference/lang_summary.html, I don't see a lot of informations. The section “SSL and Certificates” don't provides any basic information and only talk about some specific case.
Can someone show me some up-to-date documentation about that ?
There is many puppet command to do the work :
ca Local Puppet Certificate Authority management.
cert Manage certificates and requests
certificate Provide access to the CA for certificate management.
certificate_request Manage certificate requests.
certificate_revocation_list Manage the list of revoked certificates.
Why so many ?
And worse :
USAGE: puppet ca <action>
This provides local management of the Puppet Certificate Authority.
OPTIONS:
--render-as FORMAT - The rendering format to use.
--verbose - Whether to log verbosely.
--debug - Whether to log debug information.
ACTIONS:
destroy undocumented action
fingerprint undocumented action
generate undocumented action
list List certificates and/or certificate requests.
print undocumented action
revoke undocumented action
sign undocumented action
verify undocumented action
There is a lot of old and deprecated informations in the web, many talking about puppetca which is dead.
When I look at http://docs.puppetlabs.com/puppet/, or http://docs.puppetlabs.com/puppet/latest/reference/lang_summary.html, I don't see a lot of informations. The section “SSL and Certificates” don't provides any basic information and only talk about some specific case.
Can someone show me some up-to-date documentation about that ?
Felix Frank
Jan 14, 2014, 12:47:40 PM1/14/14
to puppet...@googlegroups.com
I agree - lots of stuff and it's a little hard to find one's way around.
I believe what you're looking for is this little paragraph:
http://docs.puppetlabs.com/guides/installation.html#sign-node-certificates
HTH,
Felix
On 01/13/2014 01:28 PM, Fabrice Bacchella wrote:
> When I look at http://docs.puppetlabs.com/puppet/, or http://docs.puppetlabs.com/puppet/latest/reference/lang_summary.html, I don't see a lot of informations. The section �SSL and Certificates� don't provides any basic information and only talk about some specific case.
I believe what you're looking for is this little paragraph:
http://docs.puppetlabs.com/guides/installation.html#sign-node-certificates
HTH,
Felix
On 01/13/2014 01:28 PM, Fabrice Bacchella wrote:
> When I look at http://docs.puppetlabs.com/puppet/, or http://docs.puppetlabs.com/puppet/latest/reference/lang_summary.html, I don't see a lot of informations. The section �SSL and Certificates� don't provides any basic information and only talk about some specific case.
Fabrice Bacchella
Jan 14, 2014, 5:26:56 PM1/14/14
to puppet...@googlegroups.com
Le 14 janv. 2014 à 18:47, Felix Frank <felix...@alumni.tu-berlin.de> a écrit :
> I agree - lots of stuff and it's a little hard to find one's way around.
>
> I believe what you're looking for is this little paragraph:
> http://docs.puppetlabs.com/guides/installation.html#sign-node-certificates
>
> HTH,
> Felix
>
> On 01/13/2014 01:28 PM, Fabrice Bacchella wrote:
>>
>> Can someone show me some up-to-date documentation about that ?
>
> --
>> Can someone show me some up-to-date documentation about that ?
>
> You received this message because you are subscribed to the Google Groups "Puppet Users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/52D5783C.7090109%40alumni.tu-berlin.de.
> For more options, visit https://groups.google.com/groups/opt_out.
Reply all
Reply to author
Forward
0 new messages