- From: "Scott M. Likens" <
>
- To:
- Subject: [[chef-dev]] validation.pem on each and every client?
- Date: Mon, 22 Feb 2010 14:30:09 -0800
Hey,
I made the ticket
http://tickets.opscode.com/browse/COOK-258 regarding
validation.pem, and the regular bootstrap.
I was looking at
http://github.com/jtimberman/cookbooks/blob/08alpha_bootstrap/bootstrap/templates/default/client.rb.erb
and felt the 'hack' that I had put into
http://likens.us/client.rb
should be included,
specifically
if File.exists?("/etc/chef/validation.pem")
validation_key "/etc/chef/validation.pem"
end
Because my concern is basically that I don't want to have the ship the
validation.pem to each server; I like the ability to ship either
client.pem or validation.pem and let the client do the work... however
without that in client.rb chef-client will spew that it can't find the
key... even on a registered node that fully works!
So ... any comments? votes? am I wrong?
Thanks,
Scott M. Likens
- [[chef-dev]] validation.pem on each and every client?, Scott M. Likens, 02/22/2010
Archive powered by MHonArc 2.6.16.