I'm working on a system for auto-resigning certificates for our clients and Iv'e basically got it working .. but I notice that Puppet uses an inventory file and a serial # file that seem to be differently formatted than the openssl toolkit uses? The serial number file that puppet generates has a 4 digit number starting with 0000... but openssl tracks its serial numbers in a hex format (0C, for example). The inventory files are also not compatible I found.
Can anyone explain why this is? It makes it harder to use these two different tools with the same serial, inventory and CA files... —Matt (example inventory files below) puppet: 0x0007 2011-02-06T14:17:23GMT 2011-02-08T14:17:23GMT /CN=master102.dc1.xxx.com 0x0008 2011-02-06T14:17:28GMT 2011-02-08T14:17:28GMT /CN=master103.dc1.xxx.com openssl: V 110209142816Z 09 unknown /CN=master101.dc1.xxx.com V 110209150001Z 0A unknown /CN=master102.dc1.xxx.com -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.