Uploaded image for project: 'Puppet Server'
  1. Puppet Server
  2. SERVER-2176 The CA that signs agent requests should be an intermediate CA by default
  3. SERVER-2175

Remove CA bootstrapping code from puppetserver

    XMLWordPrintable

Details

    • Sub-task
    • Status: Closed
    • Normal
    • Resolution: Won't Do
    • None
    • None
    • None
    • None
      • puppetserver no longer generates a CA on startup
    • Froyo
    • Needs Assessment

    Description

      As part of the improvements around intermediate CA support, we want to make CA initialization more explicit. Once we have subcommands for the new CA CLI tool for generating a CA (see SERVER-2176), and a step in the PE installer to run that tool as part of installation (see PE-24739), we need to remove the CA bootstrapping code from puppetserver. Note that this refers only to the code that automatically generates CA files when starting the server for the first time, not the code to sign and set up the master host cert.

      Attachments

        Issue Links

          is blocked by

          Sub-task - The sub-task of the issue SERVER-2264 Update puppetserver clojure integration tests to handle lack of CA bootstrapping

          • Normal - Regular issue, some loss of functionality under specific circumstances.
          • Closed

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. SERVER-2172 Simple CLI tool for setting up an intermediate CA

          • Normal - Regular issue, some loss of functionality under specific circumstances.
          • Closed

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. SERVER-2176 The CA that signs agent requests should be an intermediate CA by default

          • Normal - Regular issue, some loss of functionality under specific circumstances.
          • Closed
          relates to

          Improvement - An improvement or enhancement to an existing feature or task. SERVER-2197 Puppetserver needs to serve the CA bundle from the CA cert endpoint

          • Normal - Regular issue, some loss of functionality under specific circumstances.
          • Closed

          Activity

            People

              Unassigned Unassigned
              maggie Maggie Dreyer
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Zendesk Support