By far one of the dodgiest tasks in Cfengine is authentication of this
nature. Since the errors says 'denied access' then the trouble likely
lies in the access_rules server bundle. Do you have any such rules?
Example:
bundle server access_rules {
vars:
unxxhd01::
"admit" slist => {
"127.0.0.1",
"172.16.1.0/24"
};
access:
policy_host_name::
"${g.masterfiles}"
comment => "Allow access to policy host's master files.",
admit => { "@{admit}" };
any::
# All policy hosts to 'push'.
"${g.workdir}/bin/cf-agent"
admit => { "10.129.31.37" }; # Policy host IP.
}
Sincerely,
--
Neil Watson
416-673-3465
CONFIDENTIALITY WARNING
This communication, including any attachments, is for the exclusive use of
addressee and may contain proprietary and/or confidential information. If you
are not the intended recipient, any use, copying, disclosure, dissemination or
distribution is strictly prohibited. If you are not the intended recipient,
please notify the sender immediately by return e-mail, delete this
communication and destroy all copies.
AVERTISSEMENT RELATIF À LA CONFIDENTIALITÉ
Ce message, ainsi que les pièces qui y sont jointes, est destiné à l’usage
exclusif de la personne à laquelle il s’adresse et peut contenir de
l’information personnelle ou confidentielle. Si le lecteur de ce message n’en
est pas le destinataire, nous l’avisons par la présente que toute diffusion,
distribution, reproduction ou utilisation de son contenu est strictement
interdite. Veuillez avertir sur-le-champ l’expéditeur par retour de courrier
électronique et supprimez ce message ainsi que toutes les pièces jointes.
_______________________________________________
Help-cfengine mailing list
[email protected]
https://cfengine.org/mailman/listinfo/help-cfengine
