puppet 5.5.3 → 5.5.6
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of puppet might be problematic. Click here for more details.
- checksums.yaml +5 -5
- data/CONTRIBUTING.md +1 -4
- data/Gemfile +5 -1
- data/Gemfile.lock +167 -0
- data/Rakefile +4 -34
- data/ext/build_defaults.yaml +0 -2
- data/lib/puppet/application/cert.rb +3 -1
- data/lib/puppet/defaults.rb +55 -26
- data/lib/puppet/face/certificate.rb +2 -0
- data/lib/puppet/indirector/ldap.rb +6 -0
- data/lib/puppet/node/environment.rb +4 -2
- data/lib/puppet/parser/functions/tagged.rb +1 -4
- data/lib/puppet/pops/issues.rb +4 -0
- data/lib/puppet/pops/validation/checker4_0.rb +100 -0
- data/lib/puppet/pops/validation/validator_factory_4_0.rb +4 -3
- data/lib/puppet/provider/augeas/augeas.rb +198 -4
- data/lib/puppet/provider/service/smf.rb +2 -3
- data/lib/puppet/provider/service/upstart.rb +10 -2
- data/lib/puppet/test/test_helper.rb +0 -3
- data/lib/puppet/type/file/source.rb +10 -1
- data/lib/puppet/version.rb +1 -1
- data/locales/puppet.pot +132 -118
- data/man/man5/puppet.conf.5 +23 -23
- data/man/man8/puppet-agent.8 +1 -1
- data/man/man8/puppet-apply.8 +1 -1
- data/man/man8/puppet-ca.8 +3 -3
- data/man/man8/puppet-catalog.8 +1 -1
- data/man/man8/puppet-cert.8 +2 -2
- data/man/man8/puppet-certificate.8 +3 -3
- data/man/man8/puppet-certificate_request.8 +1 -1
- data/man/man8/puppet-certificate_revocation_list.8 +1 -1
- data/man/man8/puppet-config.8 +1 -1
- data/man/man8/puppet-describe.8 +1 -1
- data/man/man8/puppet-device.8 +1 -1
- data/man/man8/puppet-doc.8 +1 -1
- data/man/man8/puppet-epp.8 +1 -1
- data/man/man8/puppet-facts.8 +1 -1
- data/man/man8/puppet-filebucket.8 +1 -1
- data/man/man8/puppet-generate.8 +1 -1
- data/man/man8/puppet-help.8 +1 -1
- data/man/man8/puppet-key.8 +1 -1
- data/man/man8/puppet-lookup.8 +1 -1
- data/man/man8/puppet-man.8 +1 -1
- data/man/man8/puppet-master.8 +1 -1
- data/man/man8/puppet-module.8 +1 -1
- data/man/man8/puppet-node.8 +1 -1
- data/man/man8/puppet-parser.8 +1 -1
- data/man/man8/puppet-plugin.8 +1 -1
- data/man/man8/puppet-report.8 +1 -1
- data/man/man8/puppet-resource.8 +1 -1
- data/man/man8/puppet-script.8 +1 -1
- data/man/man8/puppet-status.8 +1 -1
- data/man/man8/puppet.8 +3 -3
- data/spec/integration/type/file_spec.rb +18 -3
- data/spec/integration/util/settings_spec.rb +1 -0
- data/spec/integration/util/windows/security_spec.rb +78 -1
- data/spec/unit/application/master_spec.rb +2 -0
- data/spec/unit/configurer/downloader_spec.rb +5 -0
- data/spec/unit/defaults_spec.rb +13 -0
- data/spec/unit/face/help_spec.rb +2 -1
- data/spec/unit/indirector/ldap_spec.rb +22 -1
- data/spec/unit/node/environment_spec.rb +14 -0
- data/spec/unit/parser/functions/tagged_spec.rb +16 -0
- data/spec/unit/pops/validator/validator_spec.rb +139 -4
- data/spec/unit/provider/augeas/augeas_spec.rb +66 -1
- data/spec/unit/provider/service/smf_spec.rb +2 -6
- data/spec/unit/provider/service/upstart_spec.rb +37 -0
- data/spec/unit/settings/autosign_setting_spec.rb +2 -2
- data/spec/unit/settings/file_setting_spec.rb +6 -0
- data/spec/unit/ssl/certificate_authority_spec.rb +1 -0
- metadata +4 -3
data/man/man5/puppet.conf.5
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPETCONF" "5" "
|
4
|
+
.TH "PUPPETCONF" "5" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
\fBThis page is autogenerated; any changes will get overwritten\fR
|
6
6
|
.
|
7
7
|
.SH "Configuration settings"
|
@@ -55,7 +55,7 @@ A lock file to indicate that puppet agent runs have been administratively disabl
|
|
55
55
|
.IP "" 0
|
56
56
|
.
|
57
57
|
.SS "allow_duplicate_certs"
|
58
|
-
Whether to allow a new certificate request to overwrite an existing certificate\.
|
58
|
+
Whether to allow a new certificate request to overwrite an existing certificate\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
59
59
|
.
|
60
60
|
.IP "\(bu" 4
|
61
61
|
\fIDefault\fR: false
|
@@ -90,7 +90,7 @@ Whether log files should always flush to disk\.
|
|
90
90
|
.IP "" 0
|
91
91
|
.
|
92
92
|
.SS "autosign"
|
93
|
-
Whether (and how) to autosign certificate requests\. This setting is only relevant on a puppet master acting as a certificate authority (CA)\.
|
93
|
+
Whether (and how) to autosign certificate requests\. This setting is only relevant on a puppet master acting as a certificate authority (CA)\. This setting is also deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
94
94
|
.
|
95
95
|
.P
|
96
96
|
Valid values are true (autosigns all certificate requests; not recommended), false (disables autosigning certificates), or the absolute path to a file\.
|
@@ -155,7 +155,7 @@ Whether the master should function as a certificate authority\.
|
|
155
155
|
.IP "" 0
|
156
156
|
.
|
157
157
|
.SS "ca_name"
|
158
|
-
The name to use the Certificate Authority certificate\.
|
158
|
+
The name to use the Certificate Authority certificate\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
159
159
|
.
|
160
160
|
.IP "\(bu" 4
|
161
161
|
\fIDefault\fR: Puppet CA: $certname
|
@@ -179,7 +179,7 @@ The server to use for certificate authority requests\. It\'s a separate server b
|
|
179
179
|
.IP "" 0
|
180
180
|
.
|
181
181
|
.SS "ca_ttl"
|
182
|
-
The default TTL for new certificates\. This setting can be a time interval in seconds (30 or 30s), minutes (30m), hours (6h), days (2d), or years (5y)\.
|
182
|
+
The default TTL for new certificates\. This setting can be a time interval in seconds (30 or 30s), minutes (30m), hours (6h), days (2d), or years (5y)\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
183
183
|
.
|
184
184
|
.IP "\(bu" 4
|
185
185
|
\fIDefault\fR: 5y
|
@@ -187,7 +187,7 @@ The default TTL for new certificates\. This setting can be a time interval in se
|
|
187
187
|
.IP "" 0
|
188
188
|
.
|
189
189
|
.SS "cacert"
|
190
|
-
The CA certificate\.
|
190
|
+
The CA certificate\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
191
191
|
.
|
192
192
|
.IP "\(bu" 4
|
193
193
|
\fIDefault\fR: $cadir/ca_crt\.pem
|
@@ -195,7 +195,7 @@ The CA certificate\.
|
|
195
195
|
.IP "" 0
|
196
196
|
.
|
197
197
|
.SS "cacrl"
|
198
|
-
The certificate revocation list (CRL) for the CA\. Will be used if present but otherwise ignored\.
|
198
|
+
The certificate revocation list (CRL) for the CA\. Will be used if present but otherwise ignored\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
199
199
|
.
|
200
200
|
.IP "\(bu" 4
|
201
201
|
\fIDefault\fR: $cadir/ca_crl\.pem
|
@@ -203,7 +203,7 @@ The certificate revocation list (CRL) for the CA\. Will be used if present but o
|
|
203
203
|
.IP "" 0
|
204
204
|
.
|
205
205
|
.SS "cadir"
|
206
|
-
The root directory for the certificate authority\.
|
206
|
+
The root directory for the certificate authority\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
207
207
|
.
|
208
208
|
.IP "\(bu" 4
|
209
209
|
\fIDefault\fR: $ssldir/ca
|
@@ -211,7 +211,7 @@ The root directory for the certificate authority\.
|
|
211
211
|
.IP "" 0
|
212
212
|
.
|
213
213
|
.SS "cakey"
|
214
|
-
The CA private key\.
|
214
|
+
The CA private key\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
215
215
|
.
|
216
216
|
.IP "\(bu" 4
|
217
217
|
\fIDefault\fR: $cadir/ca_key\.pem
|
@@ -219,7 +219,7 @@ The CA private key\.
|
|
219
219
|
.IP "" 0
|
220
220
|
.
|
221
221
|
.SS "capass"
|
222
|
-
Where the CA stores the password for the private key\.
|
222
|
+
Where the CA stores the password for the private key\. This setting is deprecated and will be removed in Puppet 6\.
|
223
223
|
.
|
224
224
|
.IP "\(bu" 4
|
225
225
|
\fIDefault\fR: $caprivatedir/ca\.pass
|
@@ -227,7 +227,7 @@ Where the CA stores the password for the private key\.
|
|
227
227
|
.IP "" 0
|
228
228
|
.
|
229
229
|
.SS "caprivatedir"
|
230
|
-
Where the CA stores private certificate information\.
|
230
|
+
Where the CA stores private certificate information\. This setting is deprecated and will be removed in Puppet 6\.
|
231
231
|
.
|
232
232
|
.IP "\(bu" 4
|
233
233
|
\fIDefault\fR: $cadir/private
|
@@ -235,7 +235,7 @@ Where the CA stores private certificate information\.
|
|
235
235
|
.IP "" 0
|
236
236
|
.
|
237
237
|
.SS "capub"
|
238
|
-
The CA public key\.
|
238
|
+
The CA public key\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
239
239
|
.
|
240
240
|
.IP "\(bu" 4
|
241
241
|
\fIDefault\fR: $cadir/ca_pub\.pem
|
@@ -258,7 +258,7 @@ Where to get node catalogs\. This is useful to change if, for instance, you\'d l
|
|
258
258
|
.IP "" 0
|
259
259
|
.
|
260
260
|
.SS "cert_inventory"
|
261
|
-
The inventory file\. This is a text file to which the CA writes a complete listing of all certificates\.
|
261
|
+
The inventory file\. This is a text file to which the CA writes a complete listing of all certificates\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
262
262
|
.
|
263
263
|
.IP "\(bu" 4
|
264
264
|
\fIDefault\fR: $cadir/inventory\.txt
|
@@ -428,7 +428,7 @@ Extension requests will be permanently embedded in the final certificate\. Exten
|
|
428
428
|
.IP "" 0
|
429
429
|
.
|
430
430
|
.SS "csrdir"
|
431
|
-
Where the CA stores certificate requests
|
431
|
+
Where the CA stores certificate requests\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
432
432
|
.
|
433
433
|
.IP "\(bu" 4
|
434
434
|
\fIDefault\fR: $cadir/requests
|
@@ -576,7 +576,7 @@ In order to handle agent requests at a given hostname (like "puppet\.example\.co
|
|
576
576
|
On the server: Stop Puppet Server\.
|
577
577
|
.
|
578
578
|
.IP "\(bu" 4
|
579
|
-
On the CA server: Revoke and clean the server\'s old certificate\. (\fBpuppet cert clean <NAME>\fR)
|
579
|
+
On the CA server: Revoke and clean the server\'s old certificate\. (\fBpuppet cert clean <NAME>\fR) (Note \fBpuppet cert clean\fR is deprecated and will be replaced with \fBpuppetserver ca clean\fR in Puppet 6\.)
|
580
580
|
.
|
581
581
|
.IP "\(bu" 4
|
582
582
|
On the server: Delete the old certificate (and any old certificate signing requests) from the ssldir \fIhttps://puppet\.com/docs/puppet/latest/dirs_ssldir\.html\fR\.
|
@@ -585,7 +585,7 @@ On the server: Delete the old certificate (and any old certificate signing reque
|
|
585
585
|
On the server: Run \fBpuppet agent \-t \-\-ca_server <CA HOSTNAME>\fR to request a new certificate
|
586
586
|
.
|
587
587
|
.IP "\(bu" 4
|
588
|
-
On the CA server: Sign the certificate request, explicitly allowing alternate names (\fBpuppet cert sign \-\-allow\-dns\-alt\-names <NAME>\fR)\.
|
588
|
+
On the CA server: Sign the certificate request, explicitly allowing alternate names (\fBpuppet cert sign \-\-allow\-dns\-alt\-names <NAME>\fR)\. (Note \fBpuppet cert sign\fR is deprecated and will be replaced with \fBpuppetserver ca sign\fR in Puppet 6\.)
|
589
589
|
.
|
590
590
|
.IP "\(bu" 4
|
591
591
|
On the server: Run \fBpuppet agent \-t \-\-ca_server <CA HOSTNAME>\fR to retrieve the cert\.
|
@@ -813,7 +813,7 @@ Where to save \.dot\-format graphs (when the \fBgraph\fR setting is enabled)\.
|
|
813
813
|
.IP "" 0
|
814
814
|
.
|
815
815
|
.SS "group"
|
816
|
-
The group
|
816
|
+
The group Puppet Server will run as\. Used to ensure the agent side processes (agent, apply, etc) create files and directories readable by Puppet Server when necessary\.
|
817
817
|
.
|
818
818
|
.IP "\(bu" 4
|
819
819
|
\fIDefault\fR: puppet
|
@@ -938,7 +938,7 @@ The time to wait for one block to be read from an HTTP connection\. If nothing i
|
|
938
938
|
The HTTP User\-Agent string to send when making network requests\.
|
939
939
|
.
|
940
940
|
.IP "\(bu" 4
|
941
|
-
\fIDefault\fR: Puppet/5\.5\.
|
941
|
+
\fIDefault\fR: Puppet/5\.5\.6 Ruby/2\.4\.1\-p111 (x86_64\-linux)
|
942
942
|
.
|
943
943
|
.IP "" 0
|
944
944
|
.
|
@@ -1170,7 +1170,7 @@ Where the puppet master web server saves its access log\. This is only used when
|
|
1170
1170
|
.IP "" 0
|
1171
1171
|
.
|
1172
1172
|
.SS "masterport"
|
1173
|
-
The port
|
1173
|
+
The default port puppet subcommands use to communicate with Puppet Server\. (eg \fBpuppet facts upload\fR, \fBpuppet agent\fR)\. May be overridden by more specific settings (see \fBca_port\fR, \fBreport_port\fR)\.
|
1174
1174
|
.
|
1175
1175
|
.IP "\(bu" 4
|
1176
1176
|
\fIDefault\fR: 8140
|
@@ -1586,7 +1586,7 @@ The file in which puppet agent stores a list of the resources associated with th
|
|
1586
1586
|
.IP "" 0
|
1587
1587
|
.
|
1588
1588
|
.SS "rest_authconfig"
|
1589
|
-
The configuration file that defines the rights to the different rest indirections\. This can be used as a fine\-grained authorization system for \fBpuppet master\fR\.
|
1589
|
+
The configuration file that defines the rights to the different rest indirections\. This can be used as a fine\-grained authorization system for \fBpuppet master\fR\. The \fBpuppet master\fR command is deprecated and Puppet Server uses its own auth\.conf that must be placed within its configuration directory\.
|
1590
1590
|
.
|
1591
1591
|
.IP "\(bu" 4
|
1592
1592
|
\fIDefault\fR: $confdir/auth\.conf
|
@@ -1634,7 +1634,7 @@ The maximum amount of time an agent run is allowed to take\. A Puppet agent run
|
|
1634
1634
|
.IP "" 0
|
1635
1635
|
.
|
1636
1636
|
.SS "serial"
|
1637
|
-
Where the serial number for certificates is stored\.
|
1637
|
+
Where the serial number for certificates is stored\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
1638
1638
|
.
|
1639
1639
|
.IP "\(bu" 4
|
1640
1640
|
\fIDefault\fR: $cadir/serial
|
@@ -1674,7 +1674,7 @@ Whether to log and report a contextual diff when files are being replaced\. This
|
|
1674
1674
|
.IP "" 0
|
1675
1675
|
.
|
1676
1676
|
.SS "signeddir"
|
1677
|
-
Where the CA stores signed certificates\.
|
1677
|
+
Where the CA stores signed certificates\. This setting is deprecated and will be replaced by one in Puppet Server\'s configs in Puppet 6\.
|
1678
1678
|
.
|
1679
1679
|
.IP "\(bu" 4
|
1680
1680
|
\fIDefault\fR: $cadir/signed
|
@@ -1955,7 +1955,7 @@ Whether to use the cached configuration when the remote configuration will not c
|
|
1955
1955
|
.IP "" 0
|
1956
1956
|
.
|
1957
1957
|
.SS "user"
|
1958
|
-
The user
|
1958
|
+
The user Puppet Server will run as\. Used to ensure the agent side processes (agent, apply, etc) create files and directories readable by Puppet Server when necessary\.
|
1959
1959
|
.
|
1960
1960
|
.IP "\(bu" 4
|
1961
1961
|
\fIDefault\fR: puppet
|
data/man/man8/puppet-agent.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-AGENT" "8" "
|
4
|
+
.TH "PUPPET\-AGENT" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-agent\fR \- The puppet agent daemon
|
data/man/man8/puppet-apply.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-APPLY" "8" "
|
4
|
+
.TH "PUPPET\-APPLY" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-apply\fR \- Apply Puppet manifests locally
|
data/man/man8/puppet-ca.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-CA" "8" "
|
4
|
+
.TH "PUPPET\-CA" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-ca\fR \- Local Puppet Certificate Authority management\.
|
@@ -87,7 +87,7 @@ In order to handle agent requests at a given hostname (like "puppet\.example\.co
|
|
87
87
|
On the server: Stop Puppet Server\.
|
88
88
|
.
|
89
89
|
.IP "\(bu" 4
|
90
|
-
On the CA server: Revoke and clean the server\'s old certificate\. (\fBpuppet cert clean <NAME>\fR)
|
90
|
+
On the CA server: Revoke and clean the server\'s old certificate\. (\fBpuppet cert clean <NAME>\fR) (Note \fBpuppet cert clean\fR is deprecated and will be replaced with \fBpuppetserver ca clean\fR in Puppet 6\.)
|
91
91
|
.
|
92
92
|
.IP "\(bu" 4
|
93
93
|
On the server: Delete the old certificate (and any old certificate signing requests) from the ssldir \fIhttps://puppet\.com/docs/puppet/latest/dirs_ssldir\.html\fR\.
|
@@ -96,7 +96,7 @@ On the server: Delete the old certificate (and any old certificate signing reque
|
|
96
96
|
On the server: Run \fBpuppet agent \-t \-\-ca_server <CA HOSTNAME>\fR to request a new certificate
|
97
97
|
.
|
98
98
|
.IP "\(bu" 4
|
99
|
-
On the CA server: Sign the certificate request, explicitly allowing alternate names (\fBpuppet cert sign \-\-allow\-dns\-alt\-names <NAME>\fR)\.
|
99
|
+
On the CA server: Sign the certificate request, explicitly allowing alternate names (\fBpuppet cert sign \-\-allow\-dns\-alt\-names <NAME>\fR)\. (Note \fBpuppet cert sign\fR is deprecated and will be replaced with \fBpuppetserver ca sign\fR in Puppet 6\.)
|
100
100
|
.
|
101
101
|
.IP "\(bu" 4
|
102
102
|
On the server: Run \fBpuppet agent \-t \-\-ca_server <CA HOSTNAME>\fR to retrieve the cert\.
|
data/man/man8/puppet-catalog.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-CATALOG" "8" "
|
4
|
+
.TH "PUPPET\-CATALOG" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-catalog\fR \- Compile, save, view, and convert catalogs\.
|
data/man/man8/puppet-cert.8
CHANGED
@@ -1,10 +1,10 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-CERT" "8" "
|
4
|
+
.TH "PUPPET\-CERT" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
|
-
\fBpuppet\-cert\fR \- Manage certificates and requests
|
7
|
+
\fBpuppet\-cert\fR \- Manage certificates and requests (Deprecated)
|
8
8
|
.
|
9
9
|
.SH "SYNOPSIS"
|
10
10
|
Standalone certificate authority\. Capable of generating certificates, but mostly used for signing certificate requests from puppet clients\.
|
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-CERTIFICATE" "8" "
|
4
|
+
.TH "PUPPET\-CERTIFICATE" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-certificate\fR \- Provide access to the CA for certificate management\.
|
@@ -120,7 +120,7 @@ In order to handle agent requests at a given hostname (like "puppet\.example\.co
|
|
120
120
|
On the server: Stop Puppet Server\.
|
121
121
|
.
|
122
122
|
.IP "\(bu" 4
|
123
|
-
On the CA server: Revoke and clean the server\'s old certificate\. (\fBpuppet cert clean <NAME>\fR)
|
123
|
+
On the CA server: Revoke and clean the server\'s old certificate\. (\fBpuppet cert clean <NAME>\fR) (Note \fBpuppet cert clean\fR is deprecated and will be replaced with \fBpuppetserver ca clean\fR in Puppet 6\.)
|
124
124
|
.
|
125
125
|
.IP "\(bu" 4
|
126
126
|
On the server: Delete the old certificate (and any old certificate signing requests) from the ssldir \fIhttps://puppet\.com/docs/puppet/latest/dirs_ssldir\.html\fR\.
|
@@ -129,7 +129,7 @@ On the server: Delete the old certificate (and any old certificate signing reque
|
|
129
129
|
On the server: Run \fBpuppet agent \-t \-\-ca_server <CA HOSTNAME>\fR to request a new certificate
|
130
130
|
.
|
131
131
|
.IP "\(bu" 4
|
132
|
-
On the CA server: Sign the certificate request, explicitly allowing alternate names (\fBpuppet cert sign \-\-allow\-dns\-alt\-names <NAME>\fR)\.
|
132
|
+
On the CA server: Sign the certificate request, explicitly allowing alternate names (\fBpuppet cert sign \-\-allow\-dns\-alt\-names <NAME>\fR)\. (Note \fBpuppet cert sign\fR is deprecated and will be replaced with \fBpuppetserver ca sign\fR in Puppet 6\.)
|
133
133
|
.
|
134
134
|
.IP "\(bu" 4
|
135
135
|
On the server: Run \fBpuppet agent \-t \-\-ca_server <CA HOSTNAME>\fR to retrieve the cert\.
|
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-CERTIFICATE_REQUEST" "8" "
|
4
|
+
.TH "PUPPET\-CERTIFICATE_REQUEST" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-certificate_request\fR \- Manage certificate requests\.
|
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-CERTIFICATE_REVOCATION_LIST" "8" "
|
4
|
+
.TH "PUPPET\-CERTIFICATE_REVOCATION_LIST" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-certificate_revocation_list\fR \- Manage the list of revoked certificates\.
|
data/man/man8/puppet-config.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-CONFIG" "8" "
|
4
|
+
.TH "PUPPET\-CONFIG" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-config\fR \- Interact with Puppet\'s settings\.
|
data/man/man8/puppet-describe.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-DESCRIBE" "8" "
|
4
|
+
.TH "PUPPET\-DESCRIBE" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-describe\fR \- Display help about resource types
|
data/man/man8/puppet-device.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-DEVICE" "8" "
|
4
|
+
.TH "PUPPET\-DEVICE" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-device\fR \- Manage remote network devices
|
data/man/man8/puppet-doc.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-DOC" "8" "
|
4
|
+
.TH "PUPPET\-DOC" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-doc\fR \- Generate Puppet references
|
data/man/man8/puppet-epp.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-EPP" "8" "
|
4
|
+
.TH "PUPPET\-EPP" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-epp\fR \- Interact directly with the EPP template parser/renderer\.
|
data/man/man8/puppet-facts.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-FACTS" "8" "
|
4
|
+
.TH "PUPPET\-FACTS" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-facts\fR \- Retrieve and store facts\.
|
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-FILEBUCKET" "8" "
|
4
|
+
.TH "PUPPET\-FILEBUCKET" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-filebucket\fR \- Store and retrieve files in a filebucket
|
data/man/man8/puppet-generate.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-GENERATE" "8" "
|
4
|
+
.TH "PUPPET\-GENERATE" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-generate\fR \- Generates Puppet code from Ruby definitions\.
|
data/man/man8/puppet-help.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-HELP" "8" "
|
4
|
+
.TH "PUPPET\-HELP" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-help\fR \- Display Puppet help\.
|
data/man/man8/puppet-key.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-KEY" "8" "
|
4
|
+
.TH "PUPPET\-KEY" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-key\fR \- Create, save, and remove certificate keys\.
|
data/man/man8/puppet-lookup.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-LOOKUP" "8" "
|
4
|
+
.TH "PUPPET\-LOOKUP" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-lookup\fR \- Interactive Hiera lookup
|
data/man/man8/puppet-man.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-MAN" "8" "
|
4
|
+
.TH "PUPPET\-MAN" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-man\fR \- Display Puppet manual pages\.
|
data/man/man8/puppet-master.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-MASTER" "8" "
|
4
|
+
.TH "PUPPET\-MASTER" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-master\fR \- The puppet master daemon
|
data/man/man8/puppet-module.8
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
.\" generated with Ronn/v0.7.3
|
2
2
|
.\" http://github.com/rtomayko/ronn/tree/0.7.3
|
3
3
|
.
|
4
|
-
.TH "PUPPET\-MODULE" "8" "
|
4
|
+
.TH "PUPPET\-MODULE" "8" "August 2018" "Puppet, Inc." "Puppet manual"
|
5
5
|
.
|
6
6
|
.SH "NAME"
|
7
7
|
\fBpuppet\-module\fR \- Creates, installs and searches for modules on the Puppet Forge\.
|