Issue #16798 has been updated by Jeff McCune. Target version set to 2.7.20
The fix for this issue should be released when 2.7.20 is released and when 3.0.2 is released. Sean, Konrad, thank you very much for the patches and the feedback. Cheers, -Jeff ---------------------------------------- Bug #16798: CA SSL certificate revoke doesn't allow specification by serial number https://projects.puppetlabs.com/issues/16798#change-74602 Author: Sean Millichamp Status: Merged - Pending Release Priority: Normal Assignee: Category: SSL Target version: 2.7.20 Affected Puppet version: 2.7.12 Keywords: ssl certificate revoke Branch: https://github.com/puppetlabs/puppet/pull/1210 The documentation for 'puppet cert' claims that you should be able to revoke SSL certificates by specifying their serial number in hex: <pre> * revoke: Revoke the certificate of a client. The certificate can be specified either by its serial number (given as a decimal number or a hexadecimal number prefixed by '0x') or by its hostname. The certificate is revoked by adding it to the Certificate Revocation List given by the 'cacrl' configuration option. Note that the puppet master needs to be restarted after revoking certificates. </pre> Based on this I would have expected this behavior: <pre> # puppet cert revoke 0x032e notice: Revoked certificate with serial 814 </pre> Instead: <pre> # puppet cert revoke 0x032e err: Could not call revoke: Could not find a serial number for 0x032e </pre> This does not currently work, it is attempting to match only on certificate name. I first encountered this in PE's 2.7.12, but based on a quick look it appears to have been broken for a while. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
