Not so concerned about permanently rejecting a host, though if there's a way to do so, I'd be interested in knowing it. But my main goal is to be able to keep my CA request queue empty. For now I've been -- signing and immediately --cleaning, but I figured there ought to be a cleaner way to handle this.
On Sep 6, 8:21 am, "Evan Hisey" <[EMAIL PROTECTED]> wrote: > > Is there a command to reject a signing request? While obviously I can > > --sign then immediately --clean, that's not a terribly good solution, > > as it leaves a bit of a race condition loophole. Just trying to -- > > clean an unsigned cert gives an error. I've looked for documentation > > on this, but can't seem to find anything. > > > If there's not, how would I make a feature request to either have -- > > clean check for and remove unsigned certs, or to add another command > > to to this? > > Why exactly do you need to remove unsigned? or are you looking for a > away to permanently reject a host? > > Evan --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
