Hello there This might not be a solution to your problem (from a philosophical stance anyway), but you could grant your user to run `puppetd -vt` without password via sudoers on all hosts. Then you could `ssh <host> puppetd -vt` from your workstation (or write a wrapper that takes input from a list or whatever).
OR if you're using keybased authentication allow your puppetmaster host access to a set account from where using it's key it can only run puppetd. Hosts.allow, firewalls etc may need to be configured to the hosts (since so far each is pulling rather than pushing), and then you could for hosts in `puppetca --list --all | grep ^+ | cut -d ' ' -f 2` do ssh $hosts sudo puppetd -vt done but a push architecture is significantly more security vulnerable... on the bright side though, if your central configuration host is compromised, it being able to ssh to hosts is the least of your worries (why attack individual hosts if you have the master key?) cheers chakkerz --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
