Ernest Beinrohr
2013-May-23 11:01 UTC
[Puppet Users] accessing one master via multiple hostnames (internal & external)
Hi, I currently use one puppetmaster for my external and internal servers. For the externals however I have to modify my /etc/hosts for puppet to work. Is it possible to use a different hostname for my master without the agents complaining? -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscribe@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
jcbollinger
2013-May-24 17:19 UTC
[Puppet Users] Re: accessing one master via multiple hostnames (internal & external)
On Thursday, May 23, 2013 6:01:14 AM UTC-5, Ernest Beinrohr wrote:> > Hi, I currently use one puppetmaster for my external and internal servers. > For the externals however I have to modify my /etc/hosts for puppet to > work. > > Is it possible to use a different hostname for my master without the > agents complaining? >Yes. You need to generate a certificate for the server that includes the external DNS name as an alternative name (supposing that its sense of its own hostname is the internal name). See here http://serverfault.com/questions/320028/how-to-add-multiple-dns-names-to-my-puppetmaster for a fuller description. Note that that answer claims you can replace the master''s certificate (but not the CA certificate) without interfering with clients that have already been issued certs. That''s plausible -- indeed, it should be the case -- but I cannot personally confirm it. John -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscribe@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.