[Pkg-puppet-devel] Initializating puppet master ssl files
Mathias Gug
mathiaz at ubuntu.com
Mon Aug 9 19:44:08 UTC 2010
Hi,
Excerpts from Nigel Kersten's message of Tue Aug 03 13:33:48 -0400 2010:
> >> >
> >> >
> >> > One of the issue I've run is in setting up the ssl files to work with
> >> > mod_ssl - which needs to happen before apache2 is started. The [upstream
> >> > documentation][1] suggest that puppetmasterd should be run once before
> >> > apache2 is started.
> >> >
> >> > [1]: http://projects.puppetlabs.com/projects/1/wiki/Using_Passenger
> >> >
> >> > That leads to the following *ugly* code in
> >> > puppetmaster-passenger.postinst:
> >> >
> >> > # Setup passenger configuration
> >> > if [ "$2" = "" ]; then
> >> > # Start the puppetmaster once to generate the certificates
> >> > puppetmasterd
> >> > sleep 1
> >> > [ -e "/var/run/puppet/master.pid" ] && kill $(cat /var/run/puppet/master.pid)
> >> >
I've come up with a different way to generate the initial CA and master
cert:
puppetca --generate $(puppetca --configprint certname)
It seems to do the trick. Any side effects?
--
Mathias Gug
Ubuntu Developer http://www.ubuntu.com
More information about the Pkg-puppet-devel
mailing list