Bug #20869

provide option to change certificate name on hostname change

Added by Han Boetes 19 days ago. Updated 15 days ago.

Status:New
Priority:Normal
Assigned To:-
Category:PuppetCA
Target version:-
Difficulty: Bugzilla link:
Found in release: Pull request:
Story points-
Velocity based estimate-

Description

Since I quite sometimes have to change a hostname I've set up my puppet environment. I noticed the certificate name doesn't change with the new hostname. This makes sense but sometimes that's quite confusing.

So I've set up a puppet recipe that changes the puppet.conf and now all I have to do is to manually sign the cert. No big deal. But, IMHO it would even be nicer if foreman could manage both the certificate name and puppet.conf. I can imagine adding a warning in the interface with a message like:

Your hostname and cert are not the same. Would you like to change the cert name?

History

#1 Updated by Han Boetes 19 days ago

This seems to be a related issue: http://projects.theforeman.org/issues/6566

#2 Updated by Daniel Lobato Garcia 19 days ago

  • Category set to PuppetCA

This means you would want your new hostname (which becomes the certname) to be autosigned, correct?
This can be done right now, but you would have to rebuild the host after renaming, just editing and submitting is not enough.

#3 Updated by Han Boetes 15 days ago

Hello Daniel,

In my use case I install a host, make a few changes and change the name from the test name to the production name, so not having to redeploy it would be nice.

Also available in: Atom PDF