SSL certificate discovery with Puppet ?

asked 2018-06-04 08:28:59 -0600

I'm a Puppet novice, but I understand the essentials and have been running Puppet 5 in a non-production environment for about 6 months now.

I'm being asked if there's a way for Puppet to obtain facts about SSL certs discovered on nodes Puppet is managing. We're looking for aspects of the certs such as

  • when they are going to expire
  • who the issuing agency is
  • who the certificate was issued to

... etc.

Any suggestions? I've found numerous modules out there in Forge that gather some, but not all, of these things, and others that create SSL certs ... but it seems like such a perfect application for Puppet that I'm surprised not to have found anything. Thanks !

edit retag flag offensive close merge delete