Actions
Feature #8271
openON delete host, delete also unmanaged certificates from puppet CA
Status:
New
Priority:
Normal
Assignee:
-
Category:
PuppetCA
Target version:
-
Description
It would be nice if we could have a checkbox on delete hosts to also delete certificates from puppet ca. Without this any removed host will be autmatically registered in foreman at the first puppet run.
Updated by Dominic Cleal over 10 years ago
- Subject changed from ON delete host, delete also certificates from puppet caa to ON delete host, delete also unmanaged certificates from puppet CA
- Category set to PuppetCA
Just to note, if Foreman is handling provisioning and setting up autosign in the first place, it will remove the cert. This is probably only when Foreman isn't managing that process.
Updated by cristian falcas over 10 years ago
Yes, it's for machines that are manually registered in foreman.
Updated by Dominic Cleal about 9 years ago
- Related to Bug #13911: puppet cert is not revoked when host is deleted if ':unattended: false' is set added
Updated by Lukas Zapletal almost 9 years ago
Indeed that would be useful, I sometimes do a "cleanup" on my testing host:
puppet cert list --all | grep -v $(hostname) | grep -o '".*"' | xargs puppet cert clean
Admitting that this is not useful for production, leaving it here for the record.
Actions