Hello,
Thank you Julian.
I’ve already installed chef-manage and using UI. I could access chef-server from knife-solo by using the “starter kit”.
When I pushed the button [Download Starter Kit], following messages was displayed. So I could not make sure wether the keys should be RESET or not.
"Your user and organization keys will be reset. Are you sure you want to do this?"
Thanks for giving me the advice about such kind of basic question.
— idzzy
From the "manage" interface, if you click "download starter kit", you
get a zipfile containing a .chef directory that has the keys you need.
Also, to update the info from yesterday: there is a workaround if you
don't want to install the webui and are doing all operations from the
server prompt. You just create the org first and then the user (see
the conversation on the bug at
https://github.com/opscode/opscode-omnibus/issues/534#issuecomment-58186003)
In that situation, the org and user keys are printed on stdout when
you create them.
- Julian
On Tue, Oct 7, 2014 at 1:39 AM, idzzy <
> wrote:
> Hello,
>
> Thank you Daniel.
>
> I’ve already created organization and user and could login to Chef-Manage.
>
> I got knife.rb by executing “Generate Knife Config in Organizations Menu”.
> I’ll put this file in ~/.chef/ on workstation.
> But where can I get user.pem and organization-validator.pem?
>
> ---------------------------------------------------------
> current_dir = File.dirname(__FILE__)
> log_level :info
> log_location STDOUT
> node_name "idey"
> client_key "#{current_dir}/user.pem"
> validation_client_name “organization-validator"
> validation_key "#{current_dir}/organization-validator.pem"
> chef_server_url "https://host/organizations/organization"
> cache_type 'BasicFile'
> cache_options( :path => "#{ENV['HOME']}/.chef/checksums" )
> cookbook_path ["#{current_dir}/../cookbooks"]
> ---------------------------------------------------------
>
> I can see public file of user by this command. but this is just public key.
> # chef-server-ctl user-show user
>
> Is there manual/document somewhere which is described this kind of
> procedure?
> I still cannot find it...
>
> Thank you.
>
> —
> idzzy
>
>
> On October 7, 2014 at 1:25:57 PM, Daniel DeLeo (
) wrote:
>
>
>
> On Monday, October 6, 2014 at 9:15 PM, idzzy wrote:
>
>> Hello,
>>
>> In chef 11, when I executed “knife configure —initial” on workstation,
>> copied from below pem files from chef server.
>> - /etc/chef-server/admin.pm
>> - /etc/chef-server/chef-validator.pem
>>
>>
>> But In chef 12, there are not these pem files.
>> Which pem file can I use when I execute “knife configure —initial” on
>> workstation?
>
>
> A similar issue just came up on the list:
> http://lists.opscode.com/sympa/arc/chef/2014-10/msg00048.html
>
> With Chef 12 server, users can be admins (or not) in multiple organizations
> independently, so you need to create an organization and a user to be admin
> of it first, then you can add new users.
>
> --
> Daniel DeLeo
>
>
>
--
[ Julian C. Dunn <
> * Sorry, I'm ]
[ WWW: http://www.aquezada.com/staff/julian * only Web 1.0 ]
[ gopher://sdf.org/1/users/keymaker/ * compliant! ]
[ PGP: 91B3 7A9D 683C 7C16 715F 442C 6065 D533 FDC2 05B9 ]
|