[chef] Re: Re: RFC: ssl-key-management via chef-lwrp

[Arnold Krille < >]

Hi Zac,

Am 2013-07-31 11:51, schrieb Zac Stevens:
> I think it's a great idea!  In fact, we implemented a similar system 
> when I
> was working at Venda.
> The result is the x509 cookbook, available on the community site:
> http://community.opscode.com/cookbooks/x509

Wow, great!

From first tests this seems to do almost everything I want.

Adding mechanisms to detect certificates nearing the end of validation 
would be nice...
Maybe its a first start to add the validation end to the data bag item.

> I wrote a blog post to show its use, which you can find here:
> http://cryptocracy.com/blog/2013/04/20/very-simple-x509-pki-with-chef/

The url only worked after I added www. in front.
But thanks for the post and the cookbook!

Have fun,

Arnold