Sign certificate from a fingerprint - not hostname
23 views
Skip to first unread message
Sven R
Dec 12, 2014, 7:30:54 AM12/12/14
to puppet...@googlegroups.com
Hello,
is there a possibility to sign the new puppet agents by only using their fingerprints and no usage of the hostname?
Thanks in advantage!
Felix Frank
Dec 12, 2014, 7:35:51 PM12/12/14
to puppet...@googlegroups.com
Hi,
the CN of the certificate is chosen through the *certname* option for the agent. The default for this setting is indeed the $fqdn fact, but you can set it to whatever you want. E.g.
[agent]
certname=some-unique-host-value
in puppet.conf on the agent machine.
HTH,
Felix
the CN of the certificate is chosen through the *certname* option for the agent. The default for this setting is indeed the $fqdn fact, but you can set it to whatever you want. E.g.
[agent]
certname=some-unique-host-value
in puppet.conf on the agent machine.
HTH,
Felix
Reply all
Reply to author
Forward
0 new messages