Im trying to include certificate chaining in my puppet module using the
java_ks as given below. But the chain is not getting added to the keystore
and in the debug logs I dont see chain getting imported. Am I missing
something here?
Puppet install.pp
java_ks { 'cmhs:/tmp/cmhs.jks':
ensure => latest,
certificate => '/tmp/cmhs.cer',
chain => '/tmp/cmhs_ca_root.cer',
private_key => '/tmp/cmhs.key',
password => 'changeme',
}
[root@puppet-agent tmp]# keytool -list -keystore cmhs.jks -storepass
changeme
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 1 entry
cmhs, Sep 22, 2015, PrivateKeyEntry,
Certificate fingerprint (SHA1):
26:EE:96:A6:24:AD:62:6D:71:46:7B:F4:0E:7A:68:9A:FE:D8:C2:B0
Debug log:
Info: Applying configuration version '1442903710'
Debug: Executing 'keytool -list -keystore /tmp/cmhs.jks -alias cmhs'
Debug: Executing 'keytool -list -keystore /tmp/cmhs.jks -alias cmhs'
Debug: Executing 'keytool -importkeystore -srcstoretype PKCS12
-destkeystore /tmp/cmhs.jks -srckeystore /tmp/cmhs.20150922-16212-o8clvu-0
-alias cmhs'
Notice: /Stage[main]/Cmhs::Install/Java_ks[cmhs:/tmp/cmhs.jks]/ensure:
created
Debug: /Stage[main]/Cmhs::Install/Java_ks[cmhs:/tmp/cmhs.jks]: The
container Class[Cmhs::Install] will propagate my refresh event
Debug: Class[Cmhs::Install]: The container Stage[main] will propagate my
refresh event
Debug: Finishing transaction 69944070871020
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/puppet-users/1a372370-6c3a-4f0b-ad74-a01a91815bde%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
