Issue #18943 has been reported by John Guthrie. ---------------------------------------- Bug #18943: ca_port seems to have the wrong default https://projects.puppetlabs.com/issues/18943
Author: John Guthrie Status: Unreviewed Priority: Normal Assignee: Category: Target version: Affected Puppet version: Keywords: Branch: According to the man page for puppet.conf, the default value for ca_port is $masterport. However, it seems as though the default value is really 8140. This makes a difference if you do have to change masterport for some reason. To see this, set up two puppet masters, one running on port 8140, and the second running on something else, say 8150. Have them use different values for ssldir. For example, the first one could use something like /var/lib/puppet/ssl, and the second server could use /var/lib/puppet/ssl_alternate. Make certain that both of the ca sub-directories, /var/lib/puppet/ssl/ca and /var/lib/puppet/ssl_alternate/ca, are recursively identical. (That is, they both have the same index, serial, ca_crt.pem files, etc.) Then start a puppet agent using a masterport value of 8150 with no pre-defined certificate, so that a certificate gets auto-generated. Once this is done, you will see the newly signed cert in the directory for the server running on port 8140, not port 8150, the masterport value, as I would expect from the documentation. It might be that the code is correct, but the documentation is wrong as well. In that case, a fix is needed for the man page. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-bugs?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
