Issue #7407 has been reported by Stig Sandbeck Mathisen. ---------------------------------------- Feature #7407: Puppet master should provide variables for secure node identification https://projects.puppetlabs.com/issues/7407
Author: Stig Sandbeck Mathisen Status: Unreviewed Priority: Normal Assignee: Category: Target version: Affected Puppet version: Keywords: Branch: The puppet master should provide a set of variables, with a common prefix, to securely identify the connecting node, to be used in manifests and templates. I would like to see: - the certificate name of the connecting node (cn, commonname) - the IP address of the connecting node (which will not necessarily be unique) - the timestamp, made by the master, when the node connected ## name ## As of now, variables like $certname and $fqdn seem to be provided by the node. I would like to not have to trust too much of what the node is sending to the master. ## time ## Primarily used for auditing purposes. If a node has incorrect time set (for instance, far into the future), this will propagate as far as the dashboard. I would like to have the time of the connection, set by the master. ## address ## Primarily used for auditing purposes. Alternative example: When a laptop node is "not on the local network", configure only important, low-bandwidth or non-sensitive things. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
