Do you want to replace some random certificates somewhere on the disk, or
do you want to replace those used for puppet communication? If the latter
have a look here:
https://ask.puppetlabs.com/question/2097/how-to-migrate-ca-certificates-to-new-master/
This is for a puppet master migration, but
Hi Stephan,
thanks for the quick answer.
I try to explain better.
For example:
I have a pem certificate on puppet master path /puppet/files/xxx.pem this
certificate i would copy in many agent puppet under /etc/. Before to copy
it i would to check if certificate is not expired.
How can i do?
Th
If this is only on the puppet master then I would do that outside puppet,
maybe with a weekly cronjob, which moves or deletes expired certificates.
On linux with GNU date put this into a for loop going through all certs:
now=$(date +%s)
cert=$(date --date="$(openssl x509 -enddate -noout -in
ww
If this is only on the puppet master then I would do that outside puppet,
maybe with a weekly cronjob, which moves or deletes expired certificates.
On linux with GNU date put this into a for loop going through all certs:
now=$(date +%s)
cert=$(date --date="$(openssl x509 -enddate -noout -in you
Hi,
On the master,
puppet cert print
Look for the lines :
Validity
Not Before: May 10 10:23:49 2013 GMT
Not After : May 10 10:23:49 2018 GMT
On 01/09/2014 04:57 PM, Stephan wrote:
If this is only on the puppet master then I would do that outside
puppet, maybe with a
