On Wed, Jan 4, 2012 at 11:31 AM, Christopher Johnston <chjoh...@gmail.com> wrote: > If it is a requirement that I have a signed CA, that could be an issue as I > have two puppet masters in each datacenter that has its own shared CA across > those two puppet masters only (certname = puppet). I don't have one signed > CA that every master is using.
You don't need a signed CA, but rather the two servers certs are signed by the same CA, which is the reason for verifying issuer match. If your inventory server is also a puppet master, might be easier to get that system working first before trying a remote puppet master. Thanks, Nan -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
