When the puppet CA was rolled over it seems that the following file did not get updated. this is the file that the puppet masters sends to clients to use as for the public CA when they are registered as an agent. I have manually updated this certificate for now however we should puppetise it and ensure no other systems still have the expired certificate
Description
Description
Details
Details
Status | Subtype | Assigned | Task | ||
---|---|---|---|---|---|
Resolved | jbond | T236277 Extend Puppet CA Expiry date | |||
Resolved | jbond | T256721 puppetise pupet server copy of the public ca.pem |
Event Timeline
Comment Actions
Change 608565 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] puppetmaster::frontend: manage ca_cert.pem and fix types lookup calls
Comment Actions
Change 608565 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] puppetmaster::frontend: manage ca_cert.pem and fix types lookup calls
Comment Actions
Change 609186 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] puppetmaster::frontend: manage ca_cert.pem
Comment Actions
Change 608565 merged by Jbond:
[operations/puppet@production] puppetmaster::frontend: add hiera calls and type validation
Comment Actions
Change 609186 merged by Jbond:
[operations/puppet@production] puppetmaster::frontend: manage ca_cert.pem