Uploaded image for project: 'Puppet'
  1. Puppet
  2. PUP-5058

The sshkey Type's Default Target for Mac OS X 10.11 (El Capitan) is Incorrect

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: PUP 4.2.1
    • Fix Version/s: PUP 4.3.0
    • Component/s: Types and Providers
    • Labels:
      None
    • Environment:

      Mac OS X 10.11 El Capitan Beta 7

    • Template:
    • Story Points:
      2
    • Sprint:
      Client 2015-09-30, Client 2015-10-14, Client 2015-10-28
    • Release Notes:
      Bug Fix
    • Release Notes Summary:
      In OSX 10.11, the ssh_known_hosts file is in /etc/ssh, whereas it's in /etc in older OSX versions. This fix allows puppet to manage the file on 10.11, while continuing to manage the file at the previous location on 10.9 and 10.10.

      Description

      I'm using exported resources to manage the ssh_known_hosts file on a mixed network of Mac OS X and RHEL systems. Previously, Mac OS X stored SSH files at the top level of /etc/, so the previous default target value of /etc/ssh_known_hosts was correct. However, in El Capitan, SSH configuration files are now stored in /etc/ssh. It seems unlikely that this will change in the final release. The workaround is to specify the value "/etc/ssh/ssh_known_hosts" as the target attribute for the sshkey type on each host. This is a little awkward, since I have to set it differently for my existing Yosemite systems that still use /etc/ssh_known_hosts. I'm using something that looks a little like this right now in my test environment, which is propagating through my system as we speak:

              @@sshkey {
                      $fqdn:
                              type => ssh-rsa,
                              host_aliases => $fqdn ? {
                                      default                     => [$hostname, $ipaddress]
                              },
                              target => "/etc/ssh/ssh_known_hosts",
                              key => $sshrsakey
              }
       
              Sshkey <<| |>>
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                diastelo Maura Dailey
                QA Contact:
                Kurt Wall
              • Votes:
                1 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Zendesk Support