On 24/12/2010 01:45, Nick Anderson wrote: > > That doesn't work, with a clean install. > #. Install cfengine via rpm > #. run cf-key > #. copy failsafe.cf to /var/cfengine/inputs > #. bootstrap with failsafe > > # cf-agent -BK -s 192.168.1.129 > !! Not authorized to trust the server=192.168.1.129's public key > (trustkey=false) > !! Authentication dialogue with 192.168.1.129 failed > > So the issue here is the client does not have the servers key and cannot > trust the server. > > I cant quite reconcile in my head the key exchange, or the best way to > manage the key exchange.
Hi Nick, The bootstrap itself is not sufficiant on a community edition. You'll need to exchange the key by doing an interactive session with cf-runagent : # cf-runagent -i -H 192.168.1.129 With this, you'll be able to accept 192.168.1.129's key on your computer Regards Nicolas CHARLES Normation SAS - http://www.normation.com 44 rue Cauchy – 94110 ARCUEIL +33 (0)1 83 62 26 96 - +33 (0)6 14 63 25 18 _______________________________________________ Help-cfengine mailing list Help-cfengine@cfengine.org https://cfengine.org/mailman/listinfo/help-cfengine
