[SERVER-157] Utilize keylength puppet conf value for generating SSL cert keys - Puppet Tickets

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Normal
Resolution: Fixed
Affects Version/s: SERVER 0.4.0
Fix Version/s: SERVER 1.1.0, SERVER 2.1.0
Component/s: None
Labels:
None

Sub-team:
- emerald
Story Points:
1
Sprint:
Server Emerald 2015-04-15, Server Emerald 2015-05-13

Description

The puppet.conf file supports a setting called keylength which controls the bit length for keys generated for use with SSL certificates:

https://docs.puppetlabs.com/references/latest/configuration.html#keylength

When generating keys for SSL certificates, the Puppet Server CA always uses 4096 bits, which is the default for the keylength setting. For backward compatibility, the Puppet Server CA should make use of the keylength setting to control the bit length of the keys it generates.

Attachments

Issue Links

links to

cherry-pick to stable PR

original PR to master

Test

Activity

People

Assignee:: Preben Ingvaldsen

Reporter:: Jeremy Barlow

QA Contact:: Erik Dasher

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 2014/11/11 4:15 PM

Updated:: 2015/06/03 3:21 PM

Resolved:: 2015/05/12 4:19 PM