Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

Manage Java keystore and certificates - Puppet 3


I am looking to use Puppet to convert a certificate created by a Windows CA to be used on Linux with Tomcat. I then want to place it in a Java keystore and check if the cert is updated and replace the certificate in the store if required. Has anyone achieved anything similar without using the puppetlabs/java_ks as I am limited to using Puppet 3?

The way that I was thinking of doing this is by placing the cert in an eyaml file to create the cert in a directory and then use an exec to run openssl to convert the cert, keytool to place it in the store. I then thought using the refresh attribute to check when the file is changed? I am quite new to Puppet so if anyone has any better suggestions one how to do this it would be appreciated.