Opened 15 months ago

Last modified 15 months ago

#3770 new change

Generate Key-Pairs and Certificates via Puppet

Reported by: matze Assignee: matze
Priority: P2 Milestone:
Module: Infrastructure Keywords:
Cc: fred Blocked By: #3638
Blocking: #6, #3305 Platform: Unknown / Cross platform
Ready: yes Confidential: no
Tester: Unknown Verified working: no
Review URL(s):

Description

Various upcoming projects of ours depend on server-to-server communication that requires encryption. The software chosen in any case (i.e. Bacula for #6, Fluentd for #3305) supports TLS encryption, which in turn requires pre-shared keys and certificates.

Therefore we need to integrate proper key- and certificate-management in Puppet. In order to avoid manual generation of these entities, the files should be generated on-demand by the Puppet master, and be accessible on a per-host-record basis.

Change History (1)

comment:1 Changed 15 months ago by matze

  • Type changed from defect to change
Note: See TracTickets for help on using tickets.