Smart-Proxy should revoke and sign certificate when changing puppetca for a host
|Assigned to:||-||% Done:||
I think that would be more consistent if when I change my puppetca from X to Y,
the host certificate is revoked on X and signed on Y.
how should we handle the client cert needs to be removed?
afair, the client wont request a new cert at all if it has one already.