allow_duplicate_certs not work in puppet3 master
I find setting
allow_duplicate_certs to true will overwrite an existing cert from Configuration Reference. My puppet.conf showing as below:
[main] logdir=/var/log/puppet vardir=/var/lib/puppet ssldir=/var/lib/puppet/ssl rundir=/var/run/puppet factpath=$vardir/lib/facter templatedir=$confdir/templates prerun_command=/etc/puppet/etckeeper-commit-pre postrun_command=/etc/puppet/etckeeper-commit-post [master] # These are needed when the puppetmaster is run by passenger # and can safely be removed if webrick is used. ssl_client_header = SSL_CLIENT_S_DN ssl_client_verify_header = SSL_CLIENT_VERIFY allow_duplicate_certs = true autosign = true
After I run
service puppetmaster restart, the configuration did not take effect.
Here is my testing scenario
- Puppet ...