pki

Makes puppet signed certificates available for use to other applications

Max Maton

thexa4

5,788 downloads

4,145 latest version

4.0 quality score

Version information

  • 1.0.1 (latest)
  • 1.0.0
  • 0.2.0
  • 0.1.2
  • 0.1.1
  • 0.1.0
released Oct 26th 2017
This version is compatible with:
  • Debian

Start using this module

Documentation

thexa4/pki — version 1.0.1 Oct 26th 2017

#Puppet PKI This module allows using the puppet certificates to establish trust between nodes in a network. Given that all nodes have a certificate with their hostname that is signed by the puppet master we can use the puppet master as an internal CA.

This module creates three files:

  1. /etc/ssl/certs/host.crt: The certificate of this node
  2. /etc/ssl/certs/host-ca.crt: The certificate of the puppet master that signs other certificates
  3. /etc/ssl/private/host.key: The key of this node.

The puppet certificates are placed in the ssl-cert group to allow applications like apache to use them.

Usage

Just include this module on the node. There are no configuration parameters.