Page MenuHomePhabricator
Create Task
Maniphest T207050

Migrate most standard public TLS certificates to CertCentral issuance
Closed, ResolvedPublic
Actions

Description

Q2 TEC1 Goal:

  • Migrate legacy LE certs to certcentral
  • Explicitly out of scope public certs: the big unified wildcard, frack, labs

Private services:

  • librenms.wikimedia.org
  • netbox.wikimedia.org
  • tendril.wikimedia.org
  • icinga.wikimedia.org

Public services:

  • apt.wikimedia.org
  • archiva.wikimedia.org
  • dumps.wikimedia.org
  • gerrit.wikimedia.org
  • gerrit-slave.wikimedia.org
  • lists.wikimedia.org
  • mirrors.wikimedia.org

Mail, not webservers:

  • mx1001.wikimedia.org
  • mx2001.wikimedia.org

Details

ProjectBranchLines +/-Subject
operations/puppetproduction+0 -16mx: Get rid of nginx [2/2]
operations/puppetproduction+5 -2mx: Get rid of nginx [1/2]
operations/puppetproduction+0 -6mx: Get rid of the old LE puppetization
operations/puppetproduction+2 -2mx: Use certcentral managed TLS certificate
operations/puppetproduction+4 -0mx: Deploy certcentral managed TLS certificate
operations/puppetproduction+1 -1certcentral: Allow puppet_svc to be undef
operations/puppetproduction+6 -0certcentral: Provide TLS certificates for mx[12]001.wikimedia.org
operations/puppetproduction+2 -6mirrors: Get rid of the old LE puppetization
operations/puppetproduction+2 -2mirrors: Use the certcentral managed TLS certificate
operations/puppetproduction+3 -0mirrors: Deploy certcentral TLS managed certificate
operations/puppetproduction+5 -0certcentral: Provide certificates for mirrors.wikimedia.org
operations/puppetproduction+1 -8lists: Get rid of the old LE puppetization
operations/puppetproduction+5 -5lists: Use the certcentral managed TLS certificate
operations/puppetproduction+1 -1certcentral: Fix /etc/centralcerts permissions
operations/puppetproduction+1 -1lists: Fix the group name in certcentral::cert
operations/puppetproduction+4 -0lists: Deploy the certcentral managed TLS certificate
operations/puppetproduction+23 -17gerrit: Switch between old LE puppetization and certcentral using hiera
operations/puppetproduction+5 -0certcentral: Provide TLS certificates for lists.wikimedia.org
operations/puppetproduction+3 -2certcentral: Mimick letsencrypt::cert::integrated key_group
operations/puppetproduction+11 -0gerrit: Use the certcentral managed TLS certificate
operations/puppetproduction+4 -2gerrit: Avoid certcentral::cert interfering with labs instances
operations/puppetproduction+3 -0gerrit: Deploy the certcentral managed TLS certificate
operations/puppetproduction+6 -0certcentral: Provide TLS certificates for gerrit/gerrit-slave.wm.o
operations/puppetproduction+1 -7dumps: Get rid of the old LE puppetization
operations/puppetproduction+2 -2dumps: Use the certcentral managed TLS certificate
operations/puppetproduction+3 -0dumps: Deploy the certcentral managed TLS certificate
operations/puppetproduction+5 -0certcentral: Provide TLS certificates for dumps.wikimedia.org
operations/puppetproduction+1 -8icinga: Get rid of old LE puppetization
operations/puppetproduction+3 -3icinga: Use certcentral managed TLS certificate for icinga.wm.o
operations/puppetproduction+3 -0icinga: Deploy the certcentral managed TLS certificate
operations/puppetproduction+8 -4certcentral: check for already declared LE Intermediate certs
operations/puppetproduction+5 -0certcentral: Provide TLS certificates for icinga.wm.o
operations/puppetproduction+2 -0netmon: sslcert::dhparam needs to be included especifically now
operations/puppetproduction+4 -1archiva: sslcert::dhparam needs to be included especifically now
operations/puppetproduction+2 -0tendril: sslcert::dhparam needs to be included especifically now
operations/puppetproduction+1 -7install_server: Remove old LE puppetization
operations/puppetproduction+70 -0certcentral: Handle common requirements for certcentral clients
operations/puppetproduction+1 -0netbox: sslcert::dhparam needs to be included especifically now
operations/puppetproduction+2 -0librenms: sslcert::dhparam needs to be included especifically now
operations/puppetproduction+8 -6sslcert: Avoid /etc/ssl/dhparam.pem redeclaration
operations/puppetproduction+3 -0installserver: Deploy certcentral managed TLS certificate
operations/puppetproduction+5 -0certcentral: Provide TLS certificates for apt.wikimedia.org
operations/puppetproduction+4 -0certcentral: Notified puppet_svc on certificate file changes
operations/puppetproduction+0 -9archiva: Remove old LE puppetization
operations/puppetproduction+2 -2archiva: Use certcentral managed TLS certificate
operations/puppetproduction+4 -0archiva: Deploy certcentral managed TLS certificate
operations/puppetproduction+5 -0certcentral: Provide TLS certificates for archiva
operations/puppetproduction+0 -2netbox: Get rid of http-01 challenge handling configuration
operations/puppetproduction+0 -2librenms: Get rid of http-01 challenge handling configuration
operations/puppetproduction+0 -9tendril: get rid of the old LE puppetization
operations/puppetproduction+3 -3tendril: Use the cercentral managed TLS certificate
operations/puppetproduction+4 -0tendril: Deploy certcentral managed TLS certificate
operations/puppetproduction+5 -0certcentral: Provide TLS certificates for tendril
operations/puppetproduction+0 -5netbox: Get rid of the old LE puppetization
operations/puppetproduction+3 -3netbox: Use certcentral managed TLS certificate
operations/puppetproduction+3 -0netbox: Deploy the TLS certificate managed by certcentral
operations/puppetproduction+5 -0certcentral: Provide a TLS certificate for netbox
Show related patches Customize query in gerrit

Related Objects
Search...

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
gerritbot added a comment.Nov 27 2018, 8:15 AM

Change 475956 merged by Vgutierrez:
[operations/puppet@production] installserver: Deploy certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/475956

gerritbot added a comment.Nov 27 2018, 8:39 AM

Change 475965 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] install_server: Remove old LE puppetization

https://gerrit.wikimedia.org/r/475965

Stashbot added a subscriber: Stashbot.Nov 27 2018, 8:41 AM

Mentioned in SAL (#wikimedia-operations) [2018-11-27T08:41:19Z] <vgutierrez> Use a TLS certificate managed by certcentral in apt.wm.o - T207050

gerritbot added a comment.Nov 27 2018, 8:56 AM

Change 475968 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Provide dhparam.pem when deploying certificates

https://gerrit.wikimedia.org/r/475968

gerritbot added a comment.Nov 27 2018, 10:19 AM

Change 475978 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] tendril: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/475978

gerritbot added a comment.Nov 27 2018, 10:19 AM

Change 475979 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] librenms: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/475979

gerritbot added a comment.Nov 27 2018, 10:19 AM

Change 475980 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] netbox: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/475980

gerritbot added a comment.Nov 27 2018, 10:19 AM

Change 475981 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] archiva: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/475981

gerritbot added a comment.Nov 27 2018, 2:05 PM

Change 476020 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] sslcert: Avoid /etc/ssl/dhparam.pem redeclaration

https://gerrit.wikimedia.org/r/476020

gerritbot added a comment.Nov 27 2018, 2:11 PM

Change 476020 abandoned by Vgutierrez:
sslcert: Avoid /etc/ssl/dhparam.pem redeclaration

https://gerrit.wikimedia.org/r/476020

gerritbot added a comment.Nov 27 2018, 2:13 PM

Change 475979 abandoned by Vgutierrez:
librenms: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/475979

gerritbot added a comment.Nov 27 2018, 2:13 PM

Change 475980 abandoned by Vgutierrez:
netbox: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/475980

gerritbot added a comment.Nov 27 2018, 2:15 PM

Change 476025 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] netmon: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/476025

gerritbot added a comment.Nov 27 2018, 2:22 PM

Change 475968 merged by Vgutierrez:
[operations/puppet@production] certcentral: Handle common requirements for certcentral clients

https://gerrit.wikimedia.org/r/475968

gerritbot added a comment.Nov 27 2018, 2:26 PM

Change 475965 merged by Vgutierrez:
[operations/puppet@production] install_server: Remove old LE puppetization

https://gerrit.wikimedia.org/r/475965

Vgutierrez updated the task description. (Show Details)Nov 27 2018, 2:29 PM
gerritbot added a comment.Nov 28 2018, 7:34 AM

Change 475978 merged by Vgutierrez:
[operations/puppet@production] tendril: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/475978

gerritbot added a comment.Nov 28 2018, 7:38 AM

Change 475981 merged by Vgutierrez:
[operations/puppet@production] archiva: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/475981

gerritbot added a comment.Nov 28 2018, 7:42 AM

Change 476025 merged by Vgutierrez:
[operations/puppet@production] netmon: sslcert::dhparam needs to be included especifically now

https://gerrit.wikimedia.org/r/476025

gerritbot added a comment.Nov 28 2018, 8:01 AM

Change 476208 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Provide TLS certificates for icinga.wm.o

https://gerrit.wikimedia.org/r/476208

gerritbot added a comment.Nov 28 2018, 8:01 AM

Change 476209 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] icinga: Deploy the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476209

gerritbot added a comment.Nov 28 2018, 8:15 AM

Change 476212 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: check for already declared LE Intermediate certs

https://gerrit.wikimedia.org/r/476212

gerritbot added a comment.Nov 28 2018, 8:43 AM

Change 476208 merged by Vgutierrez:
[operations/puppet@production] certcentral: Provide TLS certificates for icinga.wm.o

https://gerrit.wikimedia.org/r/476208

gerritbot added a comment.Nov 28 2018, 8:49 AM

Change 476212 merged by Vgutierrez:
[operations/puppet@production] certcentral: check for already declared LE Intermediate certs

https://gerrit.wikimedia.org/r/476212

gerritbot added a comment.Nov 28 2018, 9:00 AM

Change 476215 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] icinga: Use certcentral managed TLS certificate for icinga.wm.o

https://gerrit.wikimedia.org/r/476215

gerritbot added a comment.Nov 28 2018, 9:05 AM

Change 476209 merged by Vgutierrez:
[operations/puppet@production] icinga: Deploy the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476209

Stashbot added a comment.Nov 28 2018, 9:14 AM

Mentioned in SAL (#wikimedia-operations) [2018-11-28T09:14:52Z] <vgutierrez> Use a TLS certificate managed by certcentral in icinga.wm.o - T207050

gerritbot added a comment.Nov 28 2018, 9:20 AM

Change 476215 merged by Vgutierrez:
[operations/puppet@production] icinga: Use certcentral managed TLS certificate for icinga.wm.o

https://gerrit.wikimedia.org/r/476215

gerritbot added a comment.Nov 28 2018, 9:26 AM

Change 476219 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] icinga: Get rid of old LE puppetization

https://gerrit.wikimedia.org/r/476219

Vgutierrez updated the task description. (Show Details)Nov 28 2018, 9:36 AM
gerritbot added a comment.Nov 28 2018, 9:38 AM

Change 476219 merged by Vgutierrez:
[operations/puppet@production] icinga: Get rid of old LE puppetization

https://gerrit.wikimedia.org/r/476219

gerritbot added a comment.Nov 28 2018, 2:44 PM

Change 476275 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Provide TLS certificates for dumps.wikimedia.org

https://gerrit.wikimedia.org/r/476275

gerritbot added a comment.Nov 28 2018, 2:51 PM

Change 476276 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] dumps: Deploy the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476276

gerritbot added a comment.Nov 28 2018, 2:58 PM

Change 476275 merged by Vgutierrez:
[operations/puppet@production] certcentral: Provide TLS certificates for dumps.wikimedia.org

https://gerrit.wikimedia.org/r/476275

gerritbot added a comment.Nov 28 2018, 3:12 PM

Change 476276 merged by Vgutierrez:
[operations/puppet@production] dumps: Deploy the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476276

gerritbot added a comment.Nov 28 2018, 3:19 PM

Change 476281 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] dumps: Use the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476281

gerritbot added a comment.Nov 28 2018, 3:23 PM

Change 476281 merged by Vgutierrez:
[operations/puppet@production] dumps: Use the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476281

Stashbot added a comment.Nov 28 2018, 3:24 PM

Mentioned in SAL (#wikimedia-operations) [2018-11-28T15:24:03Z] <vgutierrez> use a certcentral managed TLS certificate in dumps.wm.o - T207050

gerritbot added a comment.Nov 28 2018, 3:31 PM

Change 476283 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] dumps: Get rid of the old LE puppetization

https://gerrit.wikimedia.org/r/476283

gerritbot added a comment.Nov 28 2018, 3:35 PM

Change 476283 merged by Vgutierrez:
[operations/puppet@production] dumps: Get rid of the old LE puppetization

https://gerrit.wikimedia.org/r/476283

Vgutierrez updated the task description. (Show Details)Nov 28 2018, 3:38 PM
gerritbot added a comment.Nov 28 2018, 3:40 PM

Change 476284 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Provide TLS certificates for gerrit/gerrit-slave.wm.o

https://gerrit.wikimedia.org/r/476284

gerritbot added a comment.Nov 28 2018, 3:41 PM

Change 476285 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] gerrit: Deploy the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476285

gerritbot added a comment.Nov 28 2018, 3:43 PM

Change 476284 merged by Vgutierrez:
[operations/puppet@production] certcentral: Provide TLS certificates for gerrit/gerrit-slave.wm.o

https://gerrit.wikimedia.org/r/476284

gerritbot added a comment.Nov 28 2018, 4:13 PM

Change 476285 merged by Vgutierrez:
[operations/puppet@production] gerrit: Deploy the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476285

gerritbot added a comment.Nov 28 2018, 4:21 PM

Change 476301 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] gerrit: Use the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476301

gerritbot added a comment.Nov 28 2018, 5:32 PM

Change 476315 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] gerrit: Avoid certcentral::cert interfering with labs instances

https://gerrit.wikimedia.org/r/476315

gerritbot added a comment.Nov 28 2018, 5:37 PM

Change 476315 merged by Vgutierrez:
[operations/puppet@production] gerrit: Avoid certcentral::cert interfering with labs instances

https://gerrit.wikimedia.org/r/476315

gerritbot added a comment.Nov 29 2018, 8:02 AM

Change 476301 merged by Vgutierrez:
[operations/puppet@production] gerrit: Use the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476301

Stashbot added a comment.Nov 29 2018, 8:04 AM

Mentioned in SAL (#wikimedia-operations) [2018-11-29T08:04:22Z] <vgutierrez> replacing TLS certificates in gerrit - T207050

gerritbot added a comment.Nov 29 2018, 8:55 AM

Change 476459 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] gerrit: Switch between old LE puppetization and certcentral using hiera

https://gerrit.wikimedia.org/r/476459

Vgutierrez updated the task description. (Show Details)Nov 29 2018, 9:09 AM
gerritbot added a comment.Nov 29 2018, 2:16 PM

Change 476510 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Mimick letsencrypt::cert::integrated key_group

https://gerrit.wikimedia.org/r/476510

gerritbot added a comment.Nov 29 2018, 2:58 PM

Change 476521 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Provide TLS certificates for lists.wikimedia.org

https://gerrit.wikimedia.org/r/476521

gerritbot added a comment.Nov 29 2018, 3:23 PM

Change 476510 merged by Vgutierrez:
[operations/puppet@production] certcentral: Mimick letsencrypt::cert::integrated key_group

https://gerrit.wikimedia.org/r/476510

gerritbot added a comment.Nov 29 2018, 3:30 PM

Change 476521 merged by Vgutierrez:
[operations/puppet@production] certcentral: Provide TLS certificates for lists.wikimedia.org

https://gerrit.wikimedia.org/r/476521

gerritbot added a comment.Nov 29 2018, 9:25 PM

Change 476459 merged by Vgutierrez:
[operations/puppet@production] gerrit: Switch between old LE puppetization and certcentral using hiera

https://gerrit.wikimedia.org/r/476459

gerritbot added a comment.Nov 30 2018, 2:38 PM

Change 476860 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] lists: Deploy the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476860

gerritbot added a comment.Nov 30 2018, 3:04 PM

Change 476869 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] lists: Use the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476869

gerritbot added a comment.Nov 30 2018, 3:10 PM

Change 476872 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] lists: Get rid of the old LE puppetization

https://gerrit.wikimedia.org/r/476872

gerritbot added a comment.Nov 30 2018, 3:22 PM

Change 476860 merged by Vgutierrez:
[operations/puppet@production] lists: Deploy the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476860

gerritbot added a comment.Nov 30 2018, 3:27 PM

Change 476874 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] lists: Fix the group name in certcentral::cert

https://gerrit.wikimedia.org/r/476874

gerritbot added a comment.Nov 30 2018, 3:28 PM

Change 476874 merged by Vgutierrez:
[operations/puppet@production] lists: Fix the group name in certcentral::cert

https://gerrit.wikimedia.org/r/476874

gerritbot added a comment.Nov 30 2018, 3:36 PM

Change 476877 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Fix /etc/centralcerts permissions

https://gerrit.wikimedia.org/r/476877

gerritbot added a comment.Nov 30 2018, 3:43 PM

Change 476877 merged by Vgutierrez:
[operations/puppet@production] certcentral: Fix /etc/centralcerts permissions

https://gerrit.wikimedia.org/r/476877

Stashbot added a comment.Dec 11 2018, 1:48 PM

Mentioned in SAL (#wikimedia-operations) [2018-12-11T13:48:21Z] <vgutierrez> Use certcentral TLS managed certificate in lists.wikimedia.org - T207050

gerritbot added a comment.Dec 11 2018, 1:49 PM

Change 476869 merged by Vgutierrez:
[operations/puppet@production] lists: Use the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/476869

Vgutierrez updated the task description. (Show Details)Dec 11 2018, 2:02 PM
gerritbot added a comment.Dec 11 2018, 2:08 PM

Change 476872 merged by Vgutierrez:
[operations/puppet@production] lists: Get rid of the old LE puppetization

https://gerrit.wikimedia.org/r/476872

gerritbot added a comment.Dec 11 2018, 2:32 PM

Change 478943 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Provide certificates for mirrors.wikimedia.org

https://gerrit.wikimedia.org/r/478943

gerritbot added a comment.Dec 11 2018, 2:32 PM

Change 478944 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] mirrors: Deploy certcentral TLS managed certificate

https://gerrit.wikimedia.org/r/478944

gerritbot added a comment.Dec 11 2018, 2:35 PM

Change 478943 merged by Vgutierrez:
[operations/puppet@production] certcentral: Provide certificates for mirrors.wikimedia.org

https://gerrit.wikimedia.org/r/478943

gerritbot added a comment.Dec 11 2018, 2:39 PM

Change 478944 merged by Vgutierrez:
[operations/puppet@production] mirrors: Deploy certcentral TLS managed certificate

https://gerrit.wikimedia.org/r/478944

gerritbot added a comment.Dec 11 2018, 2:45 PM

Change 478948 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] mirrors: Use the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/478948

Krenair awarded a token.Dec 11 2018, 2:45 PM
gerritbot added a comment.Dec 11 2018, 2:47 PM

Change 478950 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] mirrors: Get rid of the old LE puppetization

https://gerrit.wikimedia.org/r/478950

gerritbot added a comment.Dec 11 2018, 3:05 PM

Change 478948 merged by Vgutierrez:
[operations/puppet@production] mirrors: Use the certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/478948

Stashbot added a comment.Dec 11 2018, 3:06 PM

Mentioned in SAL (#wikimedia-operations) [2018-12-11T15:06:49Z] <vgutierrez> Use certcentral managed TLS certificate in mirrors.wikimedia.org - T207050

Vgutierrez updated the task description. (Show Details)Dec 11 2018, 3:08 PM
gerritbot added a comment.Dec 11 2018, 3:30 PM

Change 478950 merged by Vgutierrez:
[operations/puppet@production] mirrors: Get rid of the old LE puppetization

https://gerrit.wikimedia.org/r/478950

BBlack added a comment.Dec 11 2018, 5:10 PM

Done, resolve?

gerritbot added a comment.Dec 12 2018, 3:23 PM

Change 479226 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Provide TLS certificates for mx[12]001.wikimedia.org

https://gerrit.wikimedia.org/r/479226

gerritbot added a comment.Dec 12 2018, 3:33 PM

Change 479226 merged by Vgutierrez:
[operations/puppet@production] certcentral: Provide TLS certificates for mx[12]001.wikimedia.org

https://gerrit.wikimedia.org/r/479226

gerritbot added a comment.Dec 12 2018, 4:54 PM

Change 479244 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] certcentral: Allow puppet_svc to be undef

https://gerrit.wikimedia.org/r/479244

gerritbot added a comment.Dec 12 2018, 4:54 PM

Change 479245 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] mx: Deploy certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/479245

gerritbot added a comment.Dec 13 2018, 7:51 AM

Change 479244 merged by Vgutierrez:
[operations/puppet@production] certcentral: Allow puppet_svc to be undef

https://gerrit.wikimedia.org/r/479244

gerritbot added a comment.Dec 13 2018, 7:56 AM

Change 479245 merged by Vgutierrez:
[operations/puppet@production] mx: Deploy certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/479245

gerritbot added a comment.Dec 13 2018, 8:10 AM

Change 479381 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] mx: Use certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/479381

Stashbot added a comment.Dec 13 2018, 8:26 AM

Mentioned in SAL (#wikimedia-operations) [2018-12-13T08:26:54Z] <vgutierrez> Use certcentral managed TLS certificates in mx[12]001.wikimedia.org - T207050

gerritbot added a comment.Dec 13 2018, 8:27 AM

Change 479381 merged by Vgutierrez:
[operations/puppet@production] mx: Use certcentral managed TLS certificate

https://gerrit.wikimedia.org/r/479381

gerritbot added a comment.Dec 13 2018, 8:58 AM

Change 479396 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] mx: Get rid of nginx [1/2]

https://gerrit.wikimedia.org/r/479396

gerritbot added a comment.Dec 13 2018, 8:58 AM

Change 479397 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] mx: Get rid of nginx [2/2]

https://gerrit.wikimedia.org/r/479397

gerritbot added a comment.Dec 13 2018, 9:02 AM

Change 479398 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] mx: Get rid of the old LE puppetization

https://gerrit.wikimedia.org/r/479398

gerritbot added a comment.Dec 13 2018, 9:11 AM

Change 479398 merged by Vgutierrez:
[operations/puppet@production] mx: Get rid of the old LE puppetization

https://gerrit.wikimedia.org/r/479398

gerritbot added a comment.Dec 13 2018, 2:06 PM

Change 479396 merged by Vgutierrez:
[operations/puppet@production] mx: Get rid of nginx [1/2]

https://gerrit.wikimedia.org/r/479396

gerritbot added a comment.Dec 13 2018, 2:11 PM

Change 479397 merged by Vgutierrez:
[operations/puppet@production] mx: Get rid of nginx [2/2]

https://gerrit.wikimedia.org/r/479397

Vgutierrez closed this task as Resolved.Dec 13 2018, 2:15 PM
Vgutierrez removed a project: Patch-For-Review.
Vgutierrez updated the task description. (Show Details)
Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL