Hello, my first reply got lost :(.
I thought using different certs would bring puppet to accept connections from the client. I have an old setup where I did put the name puppet-vm1.domain0 with the right subnet-IP into the /etc/hosts on each client, so the client could reach the puppetmaster and the hostname matched the cert. By using an DNS entry and just putting puppet-vm1 into the client config i thought i could prevent using the hosts entry and make life more easy. You mean I need to have a puppetmaster for each subnet? cheers On 4 Sep., 15:44, Larry Ludwig <[email protected]> wrote: > Hi, > > The only way to do this is separate puppetmasters. > > SSL CA -> puppetmaster is a one to one relationship. > > Just curious why do you want separate certs? > > -L > > -- > Larry Ludwig > Reductive Labs --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
