[chef] Re: Re: RFC: ssl-key-management via chef-lwrp


Chronological Thread 
  • From: Arnold Krille < >
  • To: < >
  • Subject: [chef] Re: Re: RFC: ssl-key-management via chef-lwrp
  • Date: Wed, 31 Jul 2013 15:00:19 +0200

Hi Zac,

Am 2013-07-31 11:51, schrieb Zac Stevens:
I think it's a great idea! In fact, we implemented a similar system when I
was working at Venda.
The result is the x509 cookbook, available on the community site:
http://community.opscode.com/cookbooks/x509

Wow, great!

From first tests this seems to do almost everything I want.

Adding mechanisms to detect certificates nearing the end of validation would be nice...
Maybe its a first start to add the validation end to the data bag item.

I wrote a blog post to show its use, which you can find here:
http://cryptocracy.com/blog/2013/04/20/very-simple-x509-pki-with-chef/

The url only worked after I added www. in front.
But thanks for the post and the cookbook!

Have fun,

Arnold



Archive powered by MHonArc 2.6.16.

§