On 05/24/2014 07:54 AM, Bad Tux wrote:
Am I missing a configuration option in the manual to somehow disable SSL certificate validation? Does everybody add a cron job to their puppet master to stop the puppetmaster daemon and blow away its SSL directory then restart it at exactly 12:00AM every day, and the same on the instances at exactly 12:02AM every day? Or are we the only people on the planet who actually use Amazon's auto-scaling feature *plus* use Puppet at the same time? Curious penguins are... curious!
Can you somehow get list of active nodes from balancer? You could use that list in a daily cron to do a 'puppet cert clean' and remove all other certificates?
Another, and maybe even better solution would be to add a script that will signal puppet to remove cert of an instance once the instance goes into spindown? Don't know if thats possible, didn't use amazon so much...
-- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/538234A6.80302%40gmail.com. For more options, visit https://groups.google.com/d/optout.
