Radosław Antoniuk
2012-Aug-01 14:39 UTC
[Puppet Users] ssh keymaster new key notification
I am using the key rotation mechanism of ssh::auth, along these guidelines.
ssh::auth::key {[ "alice", "bob" ]: maxdays => 90 }
Now, because not all of my stations are puppet-managed, is there any way to
notify the user that his key got expired and that he has to update the key?
A hook to the ssh::auth::key to execute a command during rotation would be
perfect to attach an email command with the users email...
or any other ideas?
Thanks,
Radek
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To view this discussion on the web visit
https://groups.google.com/d/msg/puppet-users/-/IcHbq_m8d4UJ.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscribe@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
Try this: http://www.warden.pl/2012/09/05/puppet-send-an-email-to-the-client-when-a-new-key-is-generated/ On Wednesday, August 1, 2012 10:39:06 AM UTC-4, Radosław Antoniuk wrote:> > I am using the key rotation mechanism of ssh::auth, along these guidelines. > > > ssh::auth::key {[ "alice", "bob" ]: maxdays => 90 } > > Now, because not all of my stations are puppet-managed, is there any way > to notify the user that his key got expired and that he has to update the > key? > A hook to the ssh::auth::key to execute a command during rotation would be > perfect to attach an email command with the users email... > or any other ideas? > > Thanks, > Radek > >-- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscribe@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.