Project

General

Profile

Actions
Copy link

Feature #20679

closed

Revoke host's certificate when host is removed

Added by Mateusz Gozdek almost 7 years ago. Updated almost 7 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Difficulty:
Triaged:
Bugzilla link:
Pull request:
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

As far as I see, right now revoking certificate functionality is only used to revoke certificate before autosing entry is added for host provisioning.

It would be nice if removing Host could also automatically revoke host's certificate.

Actions
Copy link
 #1

Updated by Marek Hulán almost 7 years ago

I was under the impression this happens today. Could you double check that the hist has puppet ca proxy set and your Setting "manage_puppetca" is enabled? If all seems right, please enable debug log level for both Foreman nad Foreman Proxy and upload your production.log and proxy.log after you delete such host.

Actions
Copy link
 #2

Updated by Mateusz Gozdek almost 7 years ago

Right. When `manage_puppetca` is enabled and host is managed, certificate is revoked properly. My bad for not testing properly first. It can be closed now.

Actions
Copy link
 #3

Updated by Anonymous almost 7 years ago

  • Status changed from New to Rejected

works as designed :)

Actions
Copy link

Also available in: Atom PDF