Ask Your Question
0

linux machine on domain - cert error for non root users

asked 2018-04-19 12:33:13 -0500

updated 2018-04-24 07:25:05 -0500

Hello,

In our computer labs, we also provide some linux distributions for students. In my test environment I am simulating machines with linux distribution.

All machines with linux distribution are in our domain, as this makes it easier for students to manage and access them.

Let's take an example:

A machine with the Ubuntu 16.10 distribution. I installed the puppet agent via root, generated the certificate, signed the puppet server and everything ok. The problem is that when I install some module, for example python pip, or some python plugin, and the student executes the "puppet agent -t" for the installation, a new certificate is created and soon after the error occurs saying that it is not match to what is in the master.

How to get around this?

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2018-04-24 06:04:50 -0500

Any idea guys?

Non root users for puppet opensource, maybe?

edit flag offensive delete link more

Comments

What is happening is it is using the configuration in the user's ~/.puppet directory, which doesn't have a cert so the puppet command generates it. You may be able to set the appropriate config option to have the users read the root ssl directory and configuration.

DarylW gravatar imageDarylW ( 2018-04-26 13:43:29 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

Stats

Asked: 2018-04-19 12:33:13 -0500

Seen: 16 times

Last updated: Apr 24