Hi, Such a mechanizim is already available via foreman[1], where it handles the autosign file for you, upon a provisioning request, it would enable the machine (assuming its allowed to be built) and disable it once puppet has run on the client.
If you don't want to use the full blown foreman just for this small job, I've also written a rest api for puppet actions that can be used exactly for that. Ohad [1] - http://theforeman.org On Sun, Nov 14, 2010 at 8:09 PM, Matthew Macdonald-Wallace < mattmacw...@gmail.com> wrote: > Hi all, > > I'm trying to work out the best way to ensure that my systems run puppet at > first boot without having to run puppetca --sign or have wildcards in my > auth file. > > All nodes are stored in an external database so what I want to tell puppet > is "if it's in the database, authenticate it, othwise ignore it". Is this > possible using the "external-node" classifier? > > Thanks in advance, > > Matt > > -- > You received this message because you are subscribed to the Google Groups > "Puppet Users" group. > To post to this group, send email to puppet-us...@googlegroups.com. > To unsubscribe from this group, send email to > puppet-users+unsubscr...@googlegroups.com<puppet-users%2bunsubscr...@googlegroups.com> > . > For more options, visit this group at > http://groups.google.com/group/puppet-users?hl=en. > -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
