-
Type:
New Feature
-
Status: Closed
-
Priority:
Blocker
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: SERVER 6.0.1
-
Component/s: None
-
Labels:
-
Template:customfield_10700 276421
-
Acceptance Criteria:
- puppetserver ca has a way to generate the master cert standalone, offline
-
Epic Link:
-
Team:Froyo
-
Release Notes:New Feature
-
Release Notes Summary:
-
QA Risk Assessment:Needs Assessment
Currently, the CA CLI can only generate the master cert as part of generating the whole CA. It can generate other certificates for other certnames by using the CA API, but this won't work if the master cert isn't present. We should have a special command for just generating the master cert, when the CA is already set up but before the server is running. This might be good as a flag to the generate action, or as its own action.
—
Implemented as a --ca-client flag: `puppetserver ca generate --certname foo --ca-client`
- relates to
-
SERVER-2334 Make CA CLI check that server is offline before generating offline certs
-
- Resolved
-
- mentioned in
-
Page Loading...