After that run puppet on puppetmaster once, so the ferm config get
adjusted.
- : __handel__ && puppet agent -t --environment=production
+ : __handel__ && puppet agent --no-daemonize --onetime --environment=production
: ::client:: && me=$(hostname -f) && [ "$me" != "${me%debian.org}" ] && apt-get update &&
- apt-get install -y --no-install-recommends puppet libaugeas-ruby1.8 augeas-lenses lsb-release &&
+ apt-get install -y --no-install-recommends puppet ruby-augeas augeas-lenses lsb-release &&
service puppet stop &&
(puppet agent -t || true ) &&
cd /var/lib/puppet/ssl/certificate_requests &&
cd /var/lib/puppet/ssl/ca/requests &&
( [ -e $filename ] || (echo "$filename does not exist."; exit 1) ) &&
echo -e "$sha256 $filename" | sha256sum -c &&
- puppetca --sign $(basename "$filename" .pem) &&
+ puppet ca sign $(basename "$filename" .pem) &&
echo && echo && echo &&
echo 'cat > /var/lib/puppet/ssl/certs/ca.pem << EOF ' &&
cat /var/lib/puppet/ssl/certs/ca.pem &&
echo "cat > /var/lib/puppet/ssl/certs/$filename << EOF " &&
cat /var/lib/puppet/ssl/ca/signed/$filename &&
echo 'EOF' &&
- cd /
+ cd / &&
+ echo 'puppet agent --enable' &&
+ echo 'puppet agent -t --pluginsync' &&
+ echo 'puppet agent -t --pluginsync'
and execute this on the client.
passwords to this file. To stop git complaining on push, make sure you
update .gitignore for the new file. Now you can import this file where
you need passwords and use them.
-
-# vim:textwidth=72 sw=8 ts=8 et