Issue #1573 has been updated by jamtur01. Assigned to changed from jamtur01 to community Affected version changed from 0.24.4 to 0.25.0
Moving this to 0.25. In the current SSL code this requires some re-work. In the new 0.25 branch its already refactored. ---------------------------------------- Bug #1573: `puppetca --clean' does not remove the host CSR http://projects.reductivelabs.com/issues/show/1573 Author: josb Status: Accepted Priority: Normal Assigned to: community Category: SSL Target version: Complexity: Easy Affected version: 0.25.0 Keywords: puppetca After a `puppetca --clean <puppetmaster_host>' (silly, I know) on the puppetmaster the <code>$libdir/puppet/ssl/csr_<puppetmaster_host>.pem</code> file is left behind. The next puppetd invocation yields the following error: <pre> err: Could not request certificate: Certificate does not match private key. Try 'puppetca --clean <puppetmaster_host>' on the server. </pre> But that advice doesn't fix the problem. What does work is removing the <code>$libdir/puppet/ssl/csr_<puppetmaster_host>.pem</code> file after which the next puppetd invocation properly yields a new certificate. To handle this case, should `puppetca --clean' not also remove the CSR file if present? ---------------------------------------- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://reductivelabs.com/redmine/my/account --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en -~----------~----~----~----~------~----~------~--~---
