autosign: replace an already existing certificate
is it possible to autosign node even if such cert (name) already exists on puppet master? Most likely the already existing cert on puppet master belongs to an already terminated instance and therefore is no longer in use. Quite often we need to recreate AWS instances and eventually the IPs start reoccuring.
I understand that this poses potential security risks.
Or, maybe it is possible to request puppet master to clear the certificate of the requesting node?